blackmoon | 62a6fead6ca9d371215a00ec87b058bd5954d8466ec38f823daa646a6bdbda11 | Triage

Submit
Reports

Overview

overview

Static

static

5

62a6fead6c...11.exe

windows7-x64

62a6fead6c...11.exe

windows10-2004-x64

Sharing

General

Target

62a6fead6ca9d371215a00ec87b058bd5954d8466ec38f823daa646a6bdbda11
Size

92KB
Sample

250328-282wqstvdy
MD5

b78227c496e6be0eda3dccd46ee6618a
SHA1

146a0d1753bf87bca658c62059e4c90bb284766f
SHA256

62a6fead6ca9d371215a00ec87b058bd5954d8466ec38f823daa646a6bdbda11
SHA512

4fa71154708d88758536bd1c16cdac44bf885c68e42e70f55f86623da38eb16a52e1a836da8a36b32c29d2b3a319eadadb9f6981f1fcd6dec12ba0fd84287c03
SSDEEP

1536:8vQBeOGtrYS3srx93UBWfwC6Ggnouy80fg3Cip8iXAsG5M0u5fVBA1m:8hOmTsF93UYfwC6GIout0fmCiiiXA6NF

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

62a6fead6ca9d371215a00ec87b058bd5954d8466ec38f823daa646a6bdbda11.exe

Resource

win7-20240903-en

blackmoon banker discovery trojan upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

62a6fead6ca9d371215a00ec87b058bd5954d8466ec38f823daa646a6bdbda11.exe

Resource

win10v2004-20250314-en

blackmoon banker discovery trojan upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  62a6fead6ca9d371215a00ec87b058bd5954d8466ec38f823daa646a6bdbda11
- Size
  
  92KB
- MD5
  
  b78227c496e6be0eda3dccd46ee6618a
- SHA1
  
  146a0d1753bf87bca658c62059e4c90bb284766f
- SHA256
  
  62a6fead6ca9d371215a00ec87b058bd5954d8466ec38f823daa646a6bdbda11
- SHA512
  
  4fa71154708d88758536bd1c16cdac44bf885c68e42e70f55f86623da38eb16a52e1a836da8a36b32c29d2b3a319eadadb9f6981f1fcd6dec12ba0fd84287c03
- SSDEEP
  
  1536:8vQBeOGtrYS3srx93UBWfwC6Ggnouy80fg3Cip8iXAsG5M0u5fVBA1m:8hOmTsF93UYfwC6GIout0fmCiiiXA6NF
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2025

Terms | Privacy