Overview

overview

10

Static

static

7

NEAS.690a7...c0.exe

windows7-x64

10

NEAS.690a7...c0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.690a7fceb137c29b2f707383c13473c0.exe

  • Size

    109KB

  • Sample

    231013-y743xsce92

  • MD5

    690a7fceb137c29b2f707383c13473c0

  • SHA1

    695a7e251cf448d5b9c033ca084a3cbbf1b0492d

  • SHA256

    0c98ccfcec2cd29d0495f32beba6ed8b04d61aeaecafe2e089576563a05e1cd8

  • SHA512

    a3762bbc370e1238b5c726f2438cbd7325ae1595f54d2e6f71583a68c351df82b468209dd8b769dc58999c6d44ded393d9d942384e16d66c6f76680829c050e7

  • SSDEEP

    3072:9hOmTsF93UYfwC6GIoutyaVszyKd+XqQPunI+UNjjLxmXt:9cm4FmowdHoSyAszBd+aQmn0N7St

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.690a7fceb137c29b2f707383c13473c0.exe

    • Size

      109KB

    • MD5

      690a7fceb137c29b2f707383c13473c0

    • SHA1

      695a7e251cf448d5b9c033ca084a3cbbf1b0492d

    • SHA256

      0c98ccfcec2cd29d0495f32beba6ed8b04d61aeaecafe2e089576563a05e1cd8

    • SHA512

      a3762bbc370e1238b5c726f2438cbd7325ae1595f54d2e6f71583a68c351df82b468209dd8b769dc58999c6d44ded393d9d942384e16d66c6f76680829c050e7

    • SSDEEP

      3072:9hOmTsF93UYfwC6GIoutyaVszyKd+XqQPunI+UNjjLxmXt:9cm4FmowdHoSyAszBd+aQmn0N7St

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks