Overview

overview

10

Static

static

7

NEAS.54c29...c0.exe

windows7-x64

10

NEAS.54c29...c0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.54c293bcde9da8f77943989b3d5582c0.exe

  • Size

    191KB

  • Sample

    231013-y6kb5abf57

  • MD5

    54c293bcde9da8f77943989b3d5582c0

  • SHA1

    f7f084eccf073d6daaa709d7f67cd9aa064d3c59

  • SHA256

    027b4afe12446308250f6e1501966c0b808aaeec38a0599b6227b060e28cba7a

  • SHA512

    96e90ec6faea25bff5910da91071b385255004f0cc8a652336b55c435a85bd31cfa52876d859e1e54876b5c83139ba5f17527eeefd0de09d4bef4412ba95c80c

  • SSDEEP

    3072:8hOmTsF93UYfwC6GIoutpVBHRasyiBh3Fv9KdYGUSy3ByE9xPwWTeGm9ASR:8cm4FmowdHoSpVxRasyiBh3F2Y9iE9xi

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.54c293bcde9da8f77943989b3d5582c0.exe

    • Size

      191KB

    • MD5

      54c293bcde9da8f77943989b3d5582c0

    • SHA1

      f7f084eccf073d6daaa709d7f67cd9aa064d3c59

    • SHA256

      027b4afe12446308250f6e1501966c0b808aaeec38a0599b6227b060e28cba7a

    • SHA512

      96e90ec6faea25bff5910da91071b385255004f0cc8a652336b55c435a85bd31cfa52876d859e1e54876b5c83139ba5f17527eeefd0de09d4bef4412ba95c80c

    • SSDEEP

      3072:8hOmTsF93UYfwC6GIoutpVBHRasyiBh3Fv9KdYGUSy3ByE9xPwWTeGm9ASR:8cm4FmowdHoSpVxRasyiBh3F2Y9iE9xi

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks