blackmoon | 25d4eb9349d2a1cc45b10fc268d0ee45ab9803411fc79634f2391e07b5cec70f | Triage

Submit
Reports

Overview

overview

Static

static

5

25d4eb9349...0f.exe

windows7-x64

25d4eb9349...0f.exe

windows10-2004-x64

Sharing

General

Target

25d4eb9349d2a1cc45b10fc268d0ee45ab9803411fc79634f2391e07b5cec70f
Size

331KB
Sample

241226-zg22bayqdt
MD5

909ca9ff2354013fec5adf08cf1e6d1d
SHA1

ca2b6a495063a88dee2807b2f3111c463019ab83
SHA256

25d4eb9349d2a1cc45b10fc268d0ee45ab9803411fc79634f2391e07b5cec70f
SHA512

6cfe96de4c16ff529b325e65f5cc12855d93333d5a73f44da0441d3e08a0ee5650f28ef2b6fea41d35b83a77af3da1a5172621054238afc48358fd98286e0b9f
SSDEEP

6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbe1:R4wFHoSHYHUrAwfMp3CD1

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

25d4eb9349d2a1cc45b10fc268d0ee45ab9803411fc79634f2391e07b5cec70f.exe

Resource

win7-20240729-en

blackmoon banker discovery trojan upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

25d4eb9349d2a1cc45b10fc268d0ee45ab9803411fc79634f2391e07b5cec70f.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  25d4eb9349d2a1cc45b10fc268d0ee45ab9803411fc79634f2391e07b5cec70f
- Size
  
  331KB
- MD5
  
  909ca9ff2354013fec5adf08cf1e6d1d
- SHA1
  
  ca2b6a495063a88dee2807b2f3111c463019ab83
- SHA256
  
  25d4eb9349d2a1cc45b10fc268d0ee45ab9803411fc79634f2391e07b5cec70f
- SHA512
  
  6cfe96de4c16ff529b325e65f5cc12855d93333d5a73f44da0441d3e08a0ee5650f28ef2b6fea41d35b83a77af3da1a5172621054238afc48358fd98286e0b9f
- SSDEEP
  
  6144:Lcm4FmowdHoSHt251UriZFwfsDX2UznsaFVNJCMKAbe1:R4wFHoSHYHUrAwfMp3CD1
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy