blackmoon | 2bfd2bb19b2467d227fee525406c3f6c05d52603f17f1810bc4902c25ff2cc57 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...3c.exe

windows10-2004-x64

JaffaCakes...3c.exe

windows11-21h2-x64

Sharing

General

Target

JaffaCakes118_ca9d2c2a13edf2f0b4def5cd4418703c
Size

1.2MB
Sample

250421-ylmazsxj14
MD5

ca9d2c2a13edf2f0b4def5cd4418703c
SHA1

35622fc34f89ff48d9c5fd1a4a7b6e87fc413f43
SHA256

2bfd2bb19b2467d227fee525406c3f6c05d52603f17f1810bc4902c25ff2cc57
SHA512

9d22842b7e1e0fe864524847b88bf9e754342519d9afaab7acb77bad11ba8fbb368e02b712c56a3321e7a23ae7a93799fa951a8206c3ab285e45c1ad9e17cd07
SSDEEP

24576:R11kftiDw8qupGPCvZT9E0IqgVF0Ie3kd0PTFHTvf+WOQO8o30nrOpmv2CwwT+kz:R1WFicORTZIqg4m6Hjfa/kimvOwRoC7

Score

10^/10

blackmoon banker discovery trojan

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_ca9d2c2a13edf2f0b4def5cd4418703c.exe

Resource

win10v2004-20250410-en

blackmoon banker discovery trojan

windows10-2004-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_ca9d2c2a13edf2f0b4def5cd4418703c.exe

Resource

win11-20250410-en

blackmoon banker discovery trojan

windows11-21h2-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_ca9d2c2a13edf2f0b4def5cd4418703c
- Size
  
  1.2MB
- MD5
  
  ca9d2c2a13edf2f0b4def5cd4418703c
- SHA1
  
  35622fc34f89ff48d9c5fd1a4a7b6e87fc413f43
- SHA256
  
  2bfd2bb19b2467d227fee525406c3f6c05d52603f17f1810bc4902c25ff2cc57
- SHA512
  
  9d22842b7e1e0fe864524847b88bf9e754342519d9afaab7acb77bad11ba8fbb368e02b712c56a3321e7a23ae7a93799fa951a8206c3ab285e45c1ad9e17cd07
- SSDEEP
  
  24576:R11kftiDw8qupGPCvZT9E0IqgVF0Ie3kd0PTFHTvf+WOQO8o30nrOpmv2CwwT+kz:R1WFicORTZIqg4m6Hjfa/kimvOwRoC7
Score

10^/10

blackmoon banker discovery trojan
- Blackmoon family
  blackmoon
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojan

behavioral2

blackmoonbankerdiscoverytrojan

© 2018-2025

Terms | Privacy