blackmoon | 55c8a6e524ec6a4588e8391e668618eaea898aa99b94d6e9779c101208408429 | Triage

Submit
Reports

Overview

overview

Static

static

3

55c8a6e524...29.exe

windows7-x64

55c8a6e524...29.exe

windows10-2004-x64

Sharing

General

Target

55c8a6e524ec6a4588e8391e668618eaea898aa99b94d6e9779c101208408429
Size

456KB
Sample

241228-28vsesvlbx
MD5

cdf47c6edfc7f7e9a84544809c31e828
SHA1

6216c0195e91e14faff58d83d3a12270c81026a7
SHA256

55c8a6e524ec6a4588e8391e668618eaea898aa99b94d6e9779c101208408429
SHA512

0e1dd0b7bdec91368eb589af762a58e5c045b4d0c4348d37a372d3a976eedda0fce82a1224b788644bd495dc0154299ba996d469791f9ae0b3f10f08aa6762fa
SSDEEP

6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRo:q7Tc2NYHUrAwfMp3CDRo

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

55c8a6e524ec6a4588e8391e668618eaea898aa99b94d6e9779c101208408429.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

55c8a6e524ec6a4588e8391e668618eaea898aa99b94d6e9779c101208408429.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  55c8a6e524ec6a4588e8391e668618eaea898aa99b94d6e9779c101208408429
- Size
  
  456KB
- MD5
  
  cdf47c6edfc7f7e9a84544809c31e828
- SHA1
  
  6216c0195e91e14faff58d83d3a12270c81026a7
- SHA256
  
  55c8a6e524ec6a4588e8391e668618eaea898aa99b94d6e9779c101208408429
- SHA512
  
  0e1dd0b7bdec91368eb589af762a58e5c045b4d0c4348d37a372d3a976eedda0fce82a1224b788644bd495dc0154299ba996d469791f9ae0b3f10f08aa6762fa
- SSDEEP
  
  6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeRo:q7Tc2NYHUrAwfMp3CDRo
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy