blackmoon | 34cd672e54339a4a2c79262c5b0d5f24007c21f182bd9ced0156cf3769aab32a | Triage

Submit
Reports

Overview

overview

Static

static

3

34cd672e54...aN.exe

windows7-x64

34cd672e54...aN.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

34cd672e54339a4a2c79262c5b0d5f24007c21f182bd9ced0156cf3769aab32aN
Size

71KB
Sample

241004-rw77watckc
MD5

bba6b33503cf622e8ffe8b51811ee5e0
SHA1

55fd0c95382bce6c3fd2f8993034639d114a683f
SHA256

34cd672e54339a4a2c79262c5b0d5f24007c21f182bd9ced0156cf3769aab32a
SHA512

c5c428c02c6a3f29e91e4cff5a414440fa03d44413468a2ef148f25deb4fe1e7ad50bebb086a8f3571775f846cbab8cec93c23c98498d5697ab2acf5d6e2ca14
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjj:ymb3NkkiQ3mdBjFI4Vz

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

34cd672e54339a4a2c79262c5b0d5f24007c21f182bd9ced0156cf3769aab32aN.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

34cd672e54339a4a2c79262c5b0d5f24007c21f182bd9ced0156cf3769aab32aN.exe

Resource

win10v2004-20240802-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  34cd672e54339a4a2c79262c5b0d5f24007c21f182bd9ced0156cf3769aab32aN
- Size
  
  71KB
- MD5
  
  bba6b33503cf622e8ffe8b51811ee5e0
- SHA1
  
  55fd0c95382bce6c3fd2f8993034639d114a683f
- SHA256
  
  34cd672e54339a4a2c79262c5b0d5f24007c21f182bd9ced0156cf3769aab32a
- SHA512
  
  c5c428c02c6a3f29e91e4cff5a414440fa03d44413468a2ef148f25deb4fe1e7ad50bebb086a8f3571775f846cbab8cec93c23c98498d5697ab2acf5d6e2ca14
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfjj:ymb3NkkiQ3mdBjFI4Vz
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy