blackmoon | d2d8c7fba2ca67084a16f518c81d66c6f34c036740c04ed9aed88b4d9281dfd8 | Triage

Submit
Reports

Overview

overview

Static

static

3

d2d8c7fba2...d8.exe

windows7-x64

d2d8c7fba2...d8.exe

windows10-2004-x64

Sharing

General

Target

d2d8c7fba2ca67084a16f518c81d66c6f34c036740c04ed9aed88b4d9281dfd8
Size

454KB
Sample

241218-ggl1zsxkbk
MD5

6503689e6e1dc128232bc30cf5e336df
SHA1

7635c8a9834b22b8715ef027d5c03c62c6df44ab
SHA256

d2d8c7fba2ca67084a16f518c81d66c6f34c036740c04ed9aed88b4d9281dfd8
SHA512

bb069969882cb2304da507aba4429aae08c03824efab78e526eeb84437458b863ff414eae2f36bc3c769da3eb51a732edd2fcf486cce20c75d684e36d1288912
SSDEEP

6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeta:q7Tc2NYHUrAwfMp3CDta

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d2d8c7fba2ca67084a16f518c81d66c6f34c036740c04ed9aed88b4d9281dfd8.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

d2d8c7fba2ca67084a16f518c81d66c6f34c036740c04ed9aed88b4d9281dfd8.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  d2d8c7fba2ca67084a16f518c81d66c6f34c036740c04ed9aed88b4d9281dfd8
- Size
  
  454KB
- MD5
  
  6503689e6e1dc128232bc30cf5e336df
- SHA1
  
  7635c8a9834b22b8715ef027d5c03c62c6df44ab
- SHA256
  
  d2d8c7fba2ca67084a16f518c81d66c6f34c036740c04ed9aed88b4d9281dfd8
- SHA512
  
  bb069969882cb2304da507aba4429aae08c03824efab78e526eeb84437458b863ff414eae2f36bc3c769da3eb51a732edd2fcf486cce20c75d684e36d1288912
- SSDEEP
  
  6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeta:q7Tc2NYHUrAwfMp3CDta
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy