blackmoon | 9b2dca201b20107f2263ef202815d8f0d1a9091b1fcf28d8507965b08a131673 | Triage

Submit
Reports

Overview

overview

Static

static

3

9b2dca201b...73.exe

windows7-x64

9b2dca201b...73.exe

windows10-2004-x64

Sharing

General

Target

9b2dca201b20107f2263ef202815d8f0d1a9091b1fcf28d8507965b08a131673.exe
Size

454KB
Sample

241226-bnyepstlfk
MD5

56e75b960fa28cf112e4ec4af67256ac
SHA1

8d83c919a3339465ccc53732b176bfc44b3983c9
SHA256

9b2dca201b20107f2263ef202815d8f0d1a9091b1fcf28d8507965b08a131673
SHA512

190c83660c7de82c2123ce1242a06f70687e721ae09c550d744ac8f87df7d7fbe24615d14f1c8c93d721c40a17b65cd029172faec7545ecedb078ab8e3c4a6e3
SSDEEP

6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeg:q7Tc2NYHUrAwfMp3CDg

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9b2dca201b20107f2263ef202815d8f0d1a9091b1fcf28d8507965b08a131673.exe

Resource

win7-20241010-en

blackmoon banker discovery trojan upx

windows7-x64

7 signatures

120 seconds

Behavioral task

behavioral2

Sample

9b2dca201b20107f2263ef202815d8f0d1a9091b1fcf28d8507965b08a131673.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan upx

windows10-2004-x64

7 signatures

120 seconds

Malware Config

Targets

- Target
  
  9b2dca201b20107f2263ef202815d8f0d1a9091b1fcf28d8507965b08a131673.exe
- Size
  
  454KB
- MD5
  
  56e75b960fa28cf112e4ec4af67256ac
- SHA1
  
  8d83c919a3339465ccc53732b176bfc44b3983c9
- SHA256
  
  9b2dca201b20107f2263ef202815d8f0d1a9091b1fcf28d8507965b08a131673
- SHA512
  
  190c83660c7de82c2123ce1242a06f70687e721ae09c550d744ac8f87df7d7fbe24615d14f1c8c93d721c40a17b65cd029172faec7545ecedb078ab8e3c4a6e3
- SSDEEP
  
  6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeg:q7Tc2NYHUrAwfMp3CDg
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy