blackmoon | acb534fd806350c87d46ada2c89fff35e1736bc22ab9ad433ffbe5d8c98c0c77 | Triage

Submit
Reports

Overview

overview

Static

static

3

acb534fd80...7N.exe

windows7-x64

acb534fd80...7N.exe

windows10-2004-x64

Sharing

General

Target

acb534fd806350c87d46ada2c89fff35e1736bc22ab9ad433ffbe5d8c98c0c77N.exe
Size

453KB
Sample

241220-cth3mswqhz
MD5

fd20d2a5d88ae49b6c342fd44b5f9a10
SHA1

092baca0d46995000a57202cb6219e4d86953401
SHA256

acb534fd806350c87d46ada2c89fff35e1736bc22ab9ad433ffbe5d8c98c0c77
SHA512

fba5e43f6c16d3fe22dc984c76fdb307644f174db8859f71c32834a6c232f27ded733b47e038808295f32d42624ab2e781a57db2382fc9a65dfa93c83b2d76bc
SSDEEP

6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbefN:q7Tc2NYHUrAwfMp3CD1

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

acb534fd806350c87d46ada2c89fff35e1736bc22ab9ad433ffbe5d8c98c0c77N.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan upx

windows7-x64

7 signatures

120 seconds

Behavioral task

behavioral2

Sample

acb534fd806350c87d46ada2c89fff35e1736bc22ab9ad433ffbe5d8c98c0c77N.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan upx

windows10-2004-x64

7 signatures

120 seconds

Malware Config

Targets

- Target
  
  acb534fd806350c87d46ada2c89fff35e1736bc22ab9ad433ffbe5d8c98c0c77N.exe
- Size
  
  453KB
- MD5
  
  fd20d2a5d88ae49b6c342fd44b5f9a10
- SHA1
  
  092baca0d46995000a57202cb6219e4d86953401
- SHA256
  
  acb534fd806350c87d46ada2c89fff35e1736bc22ab9ad433ffbe5d8c98c0c77
- SHA512
  
  fba5e43f6c16d3fe22dc984c76fdb307644f174db8859f71c32834a6c232f27ded733b47e038808295f32d42624ab2e781a57db2382fc9a65dfa93c83b2d76bc
- SSDEEP
  
  6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbefN:q7Tc2NYHUrAwfMp3CD1
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy