blackmoon | debdaad3eac32f80d3f5e6d7c3c8bd6f1517a1edeb9479080025124449938336 | Triage

Submit
Reports

Overview

overview

Static

static

7

debdaad3ea...36.exe

windows7-x64

debdaad3ea...36.exe

windows10-2004-x64

Sharing

General

Target

debdaad3eac32f80d3f5e6d7c3c8bd6f1517a1edeb9479080025124449938336.exe
Size

519KB
Sample

241222-tlfe8atkhj
MD5

45fc8d9b46475590a37dd4330984826f
SHA1

5d88b44d97af0d230e8abe291fa638880d2bbfee
SHA256

debdaad3eac32f80d3f5e6d7c3c8bd6f1517a1edeb9479080025124449938336
SHA512

6f1f066bb7aae50b7f7885f22f17ce640f6939ac156ea677e88816f188afdb9967acb9e45f9b14badab956fc2312141f93508b54a0a5f5ee046996576ff95ee3
SSDEEP

12288:kR4G+fIBa2h2/unYCPTs6BCB/tmYSAXxuf4zOAC3s103Cl:kRLCL2h2/uYSY60ptBSAhG4qJ/w

Score

10^/10

blackmoon aspackv2 banker discovery trojan

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

debdaad3eac32f80d3f5e6d7c3c8bd6f1517a1edeb9479080025124449938336.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan

windows7-x64

5 signatures

120 seconds

Behavioral task

behavioral2

Sample

debdaad3eac32f80d3f5e6d7c3c8bd6f1517a1edeb9479080025124449938336.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan

windows10-2004-x64

5 signatures

120 seconds

Malware Config

Targets

- Target
  
  debdaad3eac32f80d3f5e6d7c3c8bd6f1517a1edeb9479080025124449938336.exe
- Size
  
  519KB
- MD5
  
  45fc8d9b46475590a37dd4330984826f
- SHA1
  
  5d88b44d97af0d230e8abe291fa638880d2bbfee
- SHA256
  
  debdaad3eac32f80d3f5e6d7c3c8bd6f1517a1edeb9479080025124449938336
- SHA512
  
  6f1f066bb7aae50b7f7885f22f17ce640f6939ac156ea677e88816f188afdb9967acb9e45f9b14badab956fc2312141f93508b54a0a5f5ee046996576ff95ee3
- SSDEEP
  
  12288:kR4G+fIBa2h2/unYCPTs6BCB/tmYSAXxuf4zOAC3s103Cl:kRLCL2h2/uYSY60ptBSAhG4qJ/w
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2024

Terms | Privacy