blackmoon | 64298f134c35ad8f813db949b13150b4cb58d7721adc05d6708a2684bb70f2c7 | Triage

Submit
Reports

Overview

overview

Static

static

3

64298f134c...c7.exe

windows7-x64

64298f134c...c7.exe

windows10-2004-x64

Sharing

General

Target

64298f134c35ad8f813db949b13150b4cb58d7721adc05d6708a2684bb70f2c7
Size

717KB
Sample

241226-lnw7rasnfp
MD5

aa1dfefe8df8fa738bff6da13e494fa6
SHA1

b93d42a12175dd0c924f38a181f781a32fec840d
SHA256

64298f134c35ad8f813db949b13150b4cb58d7721adc05d6708a2684bb70f2c7
SHA512

86140d50f1f51984795fc1f97260c2e6f4455602c81b294b2340408514c422b7fe2108f5107c97643a519291c2cb0a6abd937104cd4448cd2486c46a9d34cb8f
SSDEEP

12288:tpeCasLM5s1B51XzLg0Gd1I+uzRXV7A9jYUTJsUR3udEOGDYoS:XLay+WBXnvS93l

Score

10^/10

blackmoon banker discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

64298f134c35ad8f813db949b13150b4cb58d7721adc05d6708a2684bb70f2c7.exe

Resource

win7-20241023-en

blackmoon banker discovery trojan

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

64298f134c35ad8f813db949b13150b4cb58d7721adc05d6708a2684bb70f2c7.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  64298f134c35ad8f813db949b13150b4cb58d7721adc05d6708a2684bb70f2c7
- Size
  
  717KB
- MD5
  
  aa1dfefe8df8fa738bff6da13e494fa6
- SHA1
  
  b93d42a12175dd0c924f38a181f781a32fec840d
- SHA256
  
  64298f134c35ad8f813db949b13150b4cb58d7721adc05d6708a2684bb70f2c7
- SHA512
  
  86140d50f1f51984795fc1f97260c2e6f4455602c81b294b2340408514c422b7fe2108f5107c97643a519291c2cb0a6abd937104cd4448cd2486c46a9d34cb8f
- SSDEEP
  
  12288:tpeCasLM5s1B51XzLg0Gd1I+uzRXV7A9jYUTJsUR3udEOGDYoS:XLay+WBXnvS93l
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2025

Terms | Privacy