blackmoon | 8cc7d12a9f9eaac87c273998ac0463445cb6b1679bdd809a7496ed96d09f094c | Triage

Submit
Reports

Overview

overview

Static

static

3

8cc7d12a9f...4c.exe

windows7-x64

8cc7d12a9f...4c.exe

windows10-2004-x64

Sharing

General

Target

8cc7d12a9f9eaac87c273998ac0463445cb6b1679bdd809a7496ed96d09f094c
Size

78KB
Sample

240701-ab5skszdkg
MD5

27c6b87385074beec5fb276e5c6839c6
SHA1

2584d7d77857b8777ecb1a083779053826e379ae
SHA256

8cc7d12a9f9eaac87c273998ac0463445cb6b1679bdd809a7496ed96d09f094c
SHA512

c7cb4d8cba23984d6ee17c2959b036bb8f9fc139c6fc500f5907268158cf37ad81e7a21a5dfd8d9cf2ad8decebcd9a0f390e8effed9e38ffb5d2a6a37a019360
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIpWCz+FR4RzWqC5ZzF:ymb3NkkiQ3mdBjFIsIpZ+R4RzWqCp

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8cc7d12a9f9eaac87c273998ac0463445cb6b1679bdd809a7496ed96d09f094c.exe

Resource

win7-20240611-en

blackmoon banker trojan upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

8cc7d12a9f9eaac87c273998ac0463445cb6b1679bdd809a7496ed96d09f094c.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  8cc7d12a9f9eaac87c273998ac0463445cb6b1679bdd809a7496ed96d09f094c
- Size
  
  78KB
- MD5
  
  27c6b87385074beec5fb276e5c6839c6
- SHA1
  
  2584d7d77857b8777ecb1a083779053826e379ae
- SHA256
  
  8cc7d12a9f9eaac87c273998ac0463445cb6b1679bdd809a7496ed96d09f094c
- SHA512
  
  c7cb4d8cba23984d6ee17c2959b036bb8f9fc139c6fc500f5907268158cf37ad81e7a21a5dfd8d9cf2ad8decebcd9a0f390e8effed9e38ffb5d2a6a37a019360
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIpWCz+FR4RzWqC5ZzF:ymb3NkkiQ3mdBjFIsIpZ+R4RzWqCp
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- UPX dump on OEP (original entry point)
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2024

Terms | Privacy