blackmoon | 642688095dc619ed5f3c8e4ca9c59ac9fadbe8ded1144d162c531865871aad02 | Triage

Submit
Reports

Overview

overview

Static

static

3

642688095d...2N.exe

windows7-x64

642688095d...2N.exe

windows10-2004-x64

Sharing

General

Target

642688095dc619ed5f3c8e4ca9c59ac9fadbe8ded1144d162c531865871aad02N.exe
Size

50KB
Sample

241124-3t8amssmar
MD5

ca6728b8172836ece668a3316619d520
SHA1

96327c6d3592c46536c7503377438c936011e512
SHA256

642688095dc619ed5f3c8e4ca9c59ac9fadbe8ded1144d162c531865871aad02
SHA512

4c8d2ca4682425c723a070e04a691212a71e25991be7f982612ceced390ca38a0237bd806b4e2cb5d4c795a2e26df07163ad08624567e6028180c58e1a375e4f
SSDEEP

1536:mAocdpeVoBDulhzHMb7xNAa04Mcg5IKvlO:0cdpeeBSHHMHLf9RyIx

Score

10^/10

blackmoon banker discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

642688095dc619ed5f3c8e4ca9c59ac9fadbe8ded1144d162c531865871aad02N.exe

Resource

win7-20241010-en

blackmoon banker discovery trojan

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

642688095dc619ed5f3c8e4ca9c59ac9fadbe8ded1144d162c531865871aad02N.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  642688095dc619ed5f3c8e4ca9c59ac9fadbe8ded1144d162c531865871aad02N.exe
- Size
  
  50KB
- MD5
  
  ca6728b8172836ece668a3316619d520
- SHA1
  
  96327c6d3592c46536c7503377438c936011e512
- SHA256
  
  642688095dc619ed5f3c8e4ca9c59ac9fadbe8ded1144d162c531865871aad02
- SHA512
  
  4c8d2ca4682425c723a070e04a691212a71e25991be7f982612ceced390ca38a0237bd806b4e2cb5d4c795a2e26df07163ad08624567e6028180c58e1a375e4f
- SSDEEP
  
  1536:mAocdpeVoBDulhzHMb7xNAa04Mcg5IKvlO:0cdpeeBSHHMHLf9RyIx
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2025

Terms | Privacy