blackmoon | 4b1ffcb11733496e4ba89a44db5f1da9bbc265bbe47fd232ac634970ac7bd73a | Triage

Submit
Reports

Overview

overview

Static

static

3

4b1ffcb117...3a.exe

windows11-21h2-x64

Resubmissions

27/12/2024, 21:57

241227-1tzx6a1lbk 10

27/12/2024, 21:53

241227-1rwsqazret 10

Sharing

General

Target

4b1ffcb11733496e4ba89a44db5f1da9bbc265bbe47fd232ac634970ac7bd73a
Size

453KB
Sample

241227-1tzx6a1lbk
MD5

8508a97ae4f32ac4ac030ff9cca4f162
SHA1

b165cf0e84ad12c62fe6c72c421954eb91e4f2e4
SHA256

4b1ffcb11733496e4ba89a44db5f1da9bbc265bbe47fd232ac634970ac7bd73a
SHA512

ffd53d982961fa4604c208be15905d4d14bc4aa14f8aad771cfcbddddcc2bbdc500b61d09844d6927dfa01605256719c5d02260b3b15e026d9edf2cb9fdd2742
SSDEEP

6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeCc:q7Tc2NYHUrAwfMp3CDCc

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4b1ffcb11733496e4ba89a44db5f1da9bbc265bbe47fd232ac634970ac7bd73a.exe

Resource

win11-20241007-en

blackmoon banker discovery trojan upx

windows11-21h2-x64

7 signatures

300 seconds

Malware Config

Targets

- Target
  
  4b1ffcb11733496e4ba89a44db5f1da9bbc265bbe47fd232ac634970ac7bd73a
- Size
  
  453KB
- MD5
  
  8508a97ae4f32ac4ac030ff9cca4f162
- SHA1
  
  b165cf0e84ad12c62fe6c72c421954eb91e4f2e4
- SHA256
  
  4b1ffcb11733496e4ba89a44db5f1da9bbc265bbe47fd232ac634970ac7bd73a
- SHA512
  
  ffd53d982961fa4604c208be15905d4d14bc4aa14f8aad771cfcbddddcc2bbdc500b61d09844d6927dfa01605256719c5d02260b3b15e026d9edf2cb9fdd2742
- SSDEEP
  
  6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeCc:q7Tc2NYHUrAwfMp3CDCc
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy