blackmoon | 407398f1ff1d93eb4ff04f2393cfa4286e852a5d7cf4d0461494f62ea1757ee5 | Triage

Submit
Reports

Overview

overview

Static

static

3

407398f1ff...5N.exe

windows7-x64

407398f1ff...5N.exe

windows10-2004-x64

Sharing

General

Target

407398f1ff1d93eb4ff04f2393cfa4286e852a5d7cf4d0461494f62ea1757ee5N
Size

68KB
Sample

241003-h9qqbavfnb
MD5

6fed875f354edcdf4ffa1e17de72b830
SHA1

1369121b6dd58f9fa31a7c1c7ea381f777870c11
SHA256

407398f1ff1d93eb4ff04f2393cfa4286e852a5d7cf4d0461494f62ea1757ee5
SHA512

eb9dd432fd040ded586d98f606b2b6130369c2359aa6173ac236bcef1e8f23d8cff5c7900f674e6a6057ad2c46f0032909d6ebf1e2683ba924afc6f1bae30523
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27Bqfo4Z:ymb3NkkiQ3mdBjFI9cqfVZ

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

407398f1ff1d93eb4ff04f2393cfa4286e852a5d7cf4d0461494f62ea1757ee5N.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

407398f1ff1d93eb4ff04f2393cfa4286e852a5d7cf4d0461494f62ea1757ee5N.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  407398f1ff1d93eb4ff04f2393cfa4286e852a5d7cf4d0461494f62ea1757ee5N
- Size
  
  68KB
- MD5
  
  6fed875f354edcdf4ffa1e17de72b830
- SHA1
  
  1369121b6dd58f9fa31a7c1c7ea381f777870c11
- SHA256
  
  407398f1ff1d93eb4ff04f2393cfa4286e852a5d7cf4d0461494f62ea1757ee5
- SHA512
  
  eb9dd432fd040ded586d98f606b2b6130369c2359aa6173ac236bcef1e8f23d8cff5c7900f674e6a6057ad2c46f0032909d6ebf1e2683ba924afc6f1bae30523
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27Bqfo4Z:ymb3NkkiQ3mdBjFI9cqfVZ
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2024

Terms | Privacy