blackmoon | 381b1a50f92f3d9259bff089c591a5984ef95be19b58aadbcedcc0d7600e0db4 | Triage

Submit
Reports

Overview

overview

Static

static

3

381b1a50f9...b4.exe

windows7-x64

381b1a50f9...b4.exe

windows10-2004-x64

Sharing

General

Target

381b1a50f92f3d9259bff089c591a5984ef95be19b58aadbcedcc0d7600e0db4
Size

647KB
Sample

241122-h2banaslfp
MD5

e8bc9a2ef5403c26e6dd59374130c17e
SHA1

3182947bff834876fee96d87f7fba3bee4555db7
SHA256

381b1a50f92f3d9259bff089c591a5984ef95be19b58aadbcedcc0d7600e0db4
SHA512

8caa032f228c817f32b6df5c0f223a309481248d7813241c7cc6b6df7d9898df45a71189ec284763cd3443e48f58da1e23ea16fcd37824103308b28d2ee2a71c
SSDEEP

12288:z/xXzEh9dqe1IfBd1aNbPPVfXbViTN6FO7UopmKh8zKFHDVzoS:NQ/seOfBePZXbVYAFOmKh4KFZ

Score

10^/10

blackmoon banker discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

381b1a50f92f3d9259bff089c591a5984ef95be19b58aadbcedcc0d7600e0db4.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

381b1a50f92f3d9259bff089c591a5984ef95be19b58aadbcedcc0d7600e0db4.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  381b1a50f92f3d9259bff089c591a5984ef95be19b58aadbcedcc0d7600e0db4
- Size
  
  647KB
- MD5
  
  e8bc9a2ef5403c26e6dd59374130c17e
- SHA1
  
  3182947bff834876fee96d87f7fba3bee4555db7
- SHA256
  
  381b1a50f92f3d9259bff089c591a5984ef95be19b58aadbcedcc0d7600e0db4
- SHA512
  
  8caa032f228c817f32b6df5c0f223a309481248d7813241c7cc6b6df7d9898df45a71189ec284763cd3443e48f58da1e23ea16fcd37824103308b28d2ee2a71c
- SSDEEP
  
  12288:z/xXzEh9dqe1IfBd1aNbPPVfXbViTN6FO7UopmKh8zKFHDVzoS:NQ/seOfBePZXbVYAFOmKh4KFZ
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2024

Terms | Privacy