blackmoon | 64206803c859af16df868b72eb623a2c1092bd2738ae791ea24121f0c498fde4 | Triage

Submit
Reports

Overview

overview

Static

static

3

64206803c8...4N.exe

windows7-x64

64206803c8...4N.exe

windows10-2004-x64

Sharing

General

Target

64206803c859af16df868b72eb623a2c1092bd2738ae791ea24121f0c498fde4N
Size

70KB
Sample

241002-bygvpsvajd
MD5

914f08ccd73570414021b61fcdcf4e50
SHA1

a35c99bb16d40d96d4546d9a729ee68af3f68447
SHA256

64206803c859af16df868b72eb623a2c1092bd2738ae791ea24121f0c498fde4
SHA512

a2c6146b1f0244b5c7cc3aaa7a093a6ebf667fc8681e6c19553aef5c09b4281cf9ca8a9220c8046a583481770888cdd5e6f997402fc5539dea9600c5e452d7d8
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjl:ymb3NkkiQ3mdBjFI4VV

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

64206803c859af16df868b72eb623a2c1092bd2738ae791ea24121f0c498fde4N.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

64206803c859af16df868b72eb623a2c1092bd2738ae791ea24121f0c498fde4N.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  64206803c859af16df868b72eb623a2c1092bd2738ae791ea24121f0c498fde4N
- Size
  
  70KB
- MD5
  
  914f08ccd73570414021b61fcdcf4e50
- SHA1
  
  a35c99bb16d40d96d4546d9a729ee68af3f68447
- SHA256
  
  64206803c859af16df868b72eb623a2c1092bd2738ae791ea24121f0c498fde4
- SHA512
  
  a2c6146b1f0244b5c7cc3aaa7a093a6ebf667fc8681e6c19553aef5c09b4281cf9ca8a9220c8046a583481770888cdd5e6f997402fc5539dea9600c5e452d7d8
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjl:ymb3NkkiQ3mdBjFI4VV
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy