blackmoon | 81e7fa0fc24b0548823803e74d537657f445d0fab510818f9326ec10ff58d23a | Triage

Submit
Reports

Overview

overview

Static

static

3

81e7fa0fc2...3a.exe

windows7-x64

81e7fa0fc2...3a.exe

windows10-2004-x64

Sharing

General

Target

81e7fa0fc24b0548823803e74d537657f445d0fab510818f9326ec10ff58d23a
Size

2.1MB
Sample

241122-h2jl2aslgj
MD5

391dd0dcd41ae24590ce32bb7ba97bf9
SHA1

5249a9e9c45540dd914fe3384c2a695100d2214e
SHA256

81e7fa0fc24b0548823803e74d537657f445d0fab510818f9326ec10ff58d23a
SHA512

d8417893c98d39fe00c955c7a1c7e8ce62ca712f53cc6812d822f0c4ce7a88aaa24b2ba91c067f23f97743c43935ff13f3a3a63883adf30f4ba085cada8fcfd8
SSDEEP

49152:GsaENRvWAYBB/45uxd0paIHiRE6qqeGmvUcniIcKsq0:GsaEzFYBprWQR7qImJMK

Score

10^/10

blackmoon banker discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

81e7fa0fc24b0548823803e74d537657f445d0fab510818f9326ec10ff58d23a.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

81e7fa0fc24b0548823803e74d537657f445d0fab510818f9326ec10ff58d23a.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  81e7fa0fc24b0548823803e74d537657f445d0fab510818f9326ec10ff58d23a
- Size
  
  2.1MB
- MD5
  
  391dd0dcd41ae24590ce32bb7ba97bf9
- SHA1
  
  5249a9e9c45540dd914fe3384c2a695100d2214e
- SHA256
  
  81e7fa0fc24b0548823803e74d537657f445d0fab510818f9326ec10ff58d23a
- SHA512
  
  d8417893c98d39fe00c955c7a1c7e8ce62ca712f53cc6812d822f0c4ce7a88aaa24b2ba91c067f23f97743c43935ff13f3a3a63883adf30f4ba085cada8fcfd8
- SSDEEP
  
  49152:GsaENRvWAYBB/45uxd0paIHiRE6qqeGmvUcniIcKsq0:GsaEzFYBprWQR7qImJMK
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2024

Terms | Privacy