blackmoon | 946746ddfedd9d72bbc7f32577611fb39f62f27fd0d95a4fcaf22683e69baf7b | Triage

Submit
Reports

Overview

overview

Static

static

3

946746ddfe...7b.exe

windows7-x64

946746ddfe...7b.exe

windows10-2004-x64

Sharing

General

Target

946746ddfedd9d72bbc7f32577611fb39f62f27fd0d95a4fcaf22683e69baf7b.exe
Size

456KB
Sample

241226-ndf4wstrdp
MD5

044668876e12d7f363d79c7140dfefb9
SHA1

0c097638e6ab05e6eec80e4a1459a2d077cb705e
SHA256

946746ddfedd9d72bbc7f32577611fb39f62f27fd0d95a4fcaf22683e69baf7b
SHA512

6951a635a483bfc9b5fd25febcd3a1301797f78bee219fa90cdafa0b09f3d58ddbc6279ddf320d161834095430d85ad3ac8b53ed7df146cbc80ae8299887c091
SSDEEP

6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeM:q7Tc2NYHUrAwfMp3CDM

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

946746ddfedd9d72bbc7f32577611fb39f62f27fd0d95a4fcaf22683e69baf7b.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan upx

windows7-x64

7 signatures

120 seconds

Behavioral task

behavioral2

Sample

946746ddfedd9d72bbc7f32577611fb39f62f27fd0d95a4fcaf22683e69baf7b.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan upx

windows10-2004-x64

7 signatures

120 seconds

Malware Config

Targets

- Target
  
  946746ddfedd9d72bbc7f32577611fb39f62f27fd0d95a4fcaf22683e69baf7b.exe
- Size
  
  456KB
- MD5
  
  044668876e12d7f363d79c7140dfefb9
- SHA1
  
  0c097638e6ab05e6eec80e4a1459a2d077cb705e
- SHA256
  
  946746ddfedd9d72bbc7f32577611fb39f62f27fd0d95a4fcaf22683e69baf7b
- SHA512
  
  6951a635a483bfc9b5fd25febcd3a1301797f78bee219fa90cdafa0b09f3d58ddbc6279ddf320d161834095430d85ad3ac8b53ed7df146cbc80ae8299887c091
- SSDEEP
  
  6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeM:q7Tc2NYHUrAwfMp3CDM
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy