blackmoon | 48002ec954bdc3b2b43e85e78ca0f0ebd632d26254fb417f84386537abfbf99d | Triage

Submit
Reports

Overview

overview

Static

static

START喜�...21.exe

windows7-x64

START喜�...21.exe

windows10-2004-x64

Sharing

General

Target

48002ec954bdc3b2b43e85e78ca0f0ebd632d26254fb417f84386537abfbf99d
Size

1.8MB
Sample

241126-elpassznbp
MD5

e7dfa2e109a45fad90796a7e26cfcc9b
SHA1

8b038585bfb8848c57aa82a4f1ca7af2b5a1716c
SHA256

48002ec954bdc3b2b43e85e78ca0f0ebd632d26254fb417f84386537abfbf99d
SHA512

bc9d9de8139da73a6aba1ad6d0394f0bcea4eb4be5095f2b840bb9a22cdb886f0e63fc5b1dde15f79d095f8ce697b84c7fae05e06fa13be5fcd7e44452e8d26c
SSDEEP

49152:0q0XRRR0UZjaTBRUO0m2SQyOjM1Bn+Prifv:W7R0UV6BR2S/OjM1B+Pu

Score

10^/10

blackmoon banker discovery trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

START喜马拉雅VIP音频M4A批量下载器V2024.11.21.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

START喜马拉雅VIP音频M4A批量下载器V2024.11.21.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  START喜马拉雅VIP音频M4A批量下载器V2024.11.21.exe
- Size
  
  4.0MB
- MD5
  
  9781141774c8f4d7d922c74a2fafab52
- SHA1
  
  92bbf11a5b377e8d0f12a4194a287730bb00eef6
- SHA256
  
  d512a62eb421a1cabea4b8c4733fbf100216a2e78a14932ffc65056561458c7f
- SHA512
  
  4a427571fd5a38243742a6656d3213a943d0b54cfa336c8aa49d3634e16070a566d38615c3933732cc497e8860a4f378cf4933f63dff216fb63b418f814726fb
- SSDEEP
  
  49152:gpkodX1G3mDdTxKEuqPxMozs6bA8Zus8K7GE84SE84YE849E84u:gpkots3IdhiMGE8dE8RE8CE8r
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2025

Terms | Privacy