blackmoon | af177c4d2e22dcba3e5baf073141aa94867ef65a1965b80166454a9c82719f28 | Triage

Submit
Reports

Overview

overview

Static

static

3

af177c4d2e...28.exe

windows7-x64

af177c4d2e...28.exe

windows10-2004-x64

Sharing

General

Target

af177c4d2e22dcba3e5baf073141aa94867ef65a1965b80166454a9c82719f28
Size

1.2MB
Sample

241225-r4fslawjbk
MD5

4daac82dad2636e6633d58fc302629e1
SHA1

3f1616051a7b180ad2b1e61ebd895604bc68a243
SHA256

af177c4d2e22dcba3e5baf073141aa94867ef65a1965b80166454a9c82719f28
SHA512

342022fd122bfb02f3d6dbb0d198d972101dff98046e7e0cd2f14614d8d50d8477104a08c814a5f7ede590b2266e4f054924a6fb2b9d6994a5b361a066b7f7e5
SSDEEP

24576:kYhS+Q5Xk4ABS8fy+EmcRFeD6+hCyDDnVadBufB2G:e+Q50Zl0JRFyhCYhQBufB2

Score

10^/10

blackmoon banker discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

af177c4d2e22dcba3e5baf073141aa94867ef65a1965b80166454a9c82719f28.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

af177c4d2e22dcba3e5baf073141aa94867ef65a1965b80166454a9c82719f28.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  af177c4d2e22dcba3e5baf073141aa94867ef65a1965b80166454a9c82719f28
- Size
  
  1.2MB
- MD5
  
  4daac82dad2636e6633d58fc302629e1
- SHA1
  
  3f1616051a7b180ad2b1e61ebd895604bc68a243
- SHA256
  
  af177c4d2e22dcba3e5baf073141aa94867ef65a1965b80166454a9c82719f28
- SHA512
  
  342022fd122bfb02f3d6dbb0d198d972101dff98046e7e0cd2f14614d8d50d8477104a08c814a5f7ede590b2266e4f054924a6fb2b9d6994a5b361a066b7f7e5
- SSDEEP
  
  24576:kYhS+Q5Xk4ABS8fy+EmcRFeD6+hCyDDnVadBufB2G:e+Q50Zl0JRFyhCYhQBufB2
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2024

Terms | Privacy