blackmoon | 2e70e908ea274ffc35386dd27c8a5d32436c0632645b5fe790fc270aa375f868 | Triage

Submit
Reports

Overview

overview

Static

static

3

2e70e908ea...8N.exe

windows7-x64

2e70e908ea...8N.exe

windows10-2004-x64

Sharing

General

Target

2e70e908ea274ffc35386dd27c8a5d32436c0632645b5fe790fc270aa375f868N.exe
Size

53KB
Sample

241222-bzglbsyjaq
MD5

cd9c76370ebe37b8d2d902152a1ec5a0
SHA1

c288247da3b94aec5ba18f96880d23bb1bab3c6f
SHA256

2e70e908ea274ffc35386dd27c8a5d32436c0632645b5fe790fc270aa375f868
SHA512

10a3f131e93b15f2a3038b0027fed277ee196291a85027c48aa3c0a603beb3f19db68b78d2a5df3dcc1de509dc6fa5b4b48efcd04279e9844be3e2ea983755c1
SSDEEP

1536:mAocdpeVoBDulhzHMb7xNAa04Mcg5IKvlS:0cdpeeBSHHMHLf9RyIb

Score

10^/10

blackmoon banker discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2e70e908ea274ffc35386dd27c8a5d32436c0632645b5fe790fc270aa375f868N.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

2e70e908ea274ffc35386dd27c8a5d32436c0632645b5fe790fc270aa375f868N.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  2e70e908ea274ffc35386dd27c8a5d32436c0632645b5fe790fc270aa375f868N.exe
- Size
  
  53KB
- MD5
  
  cd9c76370ebe37b8d2d902152a1ec5a0
- SHA1
  
  c288247da3b94aec5ba18f96880d23bb1bab3c6f
- SHA256
  
  2e70e908ea274ffc35386dd27c8a5d32436c0632645b5fe790fc270aa375f868
- SHA512
  
  10a3f131e93b15f2a3038b0027fed277ee196291a85027c48aa3c0a603beb3f19db68b78d2a5df3dcc1de509dc6fa5b4b48efcd04279e9844be3e2ea983755c1
- SSDEEP
  
  1536:mAocdpeVoBDulhzHMb7xNAa04Mcg5IKvlS:0cdpeeBSHHMHLf9RyIb
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2025

Terms | Privacy