blackmoon | acbea3b6008d38e56c2eb82050c57d9b7109503f66b58696475fa97190270900 | Triage

Submit
Reports

Overview

overview

Static

static

3

acbea3b600...00.exe

windows7-x64

acbea3b600...00.exe

windows10-2004-x64

Sharing

General

Target

acbea3b6008d38e56c2eb82050c57d9b7109503f66b58696475fa97190270900
Size

455KB
Sample

250120-kxb3ha1pfw
MD5

61dce5939c45622c9995ff8a063968dd
SHA1

c4e0bb4253ea8ede87d9ffa3bd2583ec8811d48e
SHA256

acbea3b6008d38e56c2eb82050c57d9b7109503f66b58696475fa97190270900
SHA512

ed81ae810e4f00147e705d1a33e06a432fb6352d1ec3431a99faef6213879d04b1d933f9a2fd2d35ff04aff7d474d30b7b6310d27a0c3aaaf4ac3f78f125fb89
SSDEEP

6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbew:q7Tc2NYHUrAwfMp3CDw

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

acbea3b6008d38e56c2eb82050c57d9b7109503f66b58696475fa97190270900.exe

Resource

win7-20241010-en

blackmoon banker discovery trojan upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

acbea3b6008d38e56c2eb82050c57d9b7109503f66b58696475fa97190270900.exe

Resource

win10v2004-20241007-en

blackmoon banker discovery trojan upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  acbea3b6008d38e56c2eb82050c57d9b7109503f66b58696475fa97190270900
- Size
  
  455KB
- MD5
  
  61dce5939c45622c9995ff8a063968dd
- SHA1
  
  c4e0bb4253ea8ede87d9ffa3bd2583ec8811d48e
- SHA256
  
  acbea3b6008d38e56c2eb82050c57d9b7109503f66b58696475fa97190270900
- SHA512
  
  ed81ae810e4f00147e705d1a33e06a432fb6352d1ec3431a99faef6213879d04b1d933f9a2fd2d35ff04aff7d474d30b7b6310d27a0c3aaaf4ac3f78f125fb89
- SSDEEP
  
  6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbew:q7Tc2NYHUrAwfMp3CDw
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy