Overview

overview

10

Static

static

7

NEAS.3de11...c0.exe

windows7-x64

10

NEAS.3de11...c0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.3de11c568e1bb741c46c899171232cc0.exe

  • Size

    194KB

  • Sample

    231013-yzjf9aaf33

  • MD5

    3de11c568e1bb741c46c899171232cc0

  • SHA1

    d78acaa13280b5b116d8937d04bc21e908875fe8

  • SHA256

    c0d86181739d3cc5bf321164e109c09916ca7e576131dc90a51a4b93dd92a619

  • SHA512

    0cc5ec78911e728f7e35c381a79a0652a47c223ae137e53a3027d881b9273a2c26d8b1cb746d867a572e76a0068bd360c5161f8ec2f8bce2e1ebbd60da4cffbd

  • SSDEEP

    3072:xhOmTsF93UYfwC6GIout3WVi/8HCpi8rY9AABa1YRMxl1522cJ1g:xcm4FmowdHoS3WV28HCddWhRO1Lc4

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.3de11c568e1bb741c46c899171232cc0.exe

    • Size

      194KB

    • MD5

      3de11c568e1bb741c46c899171232cc0

    • SHA1

      d78acaa13280b5b116d8937d04bc21e908875fe8

    • SHA256

      c0d86181739d3cc5bf321164e109c09916ca7e576131dc90a51a4b93dd92a619

    • SHA512

      0cc5ec78911e728f7e35c381a79a0652a47c223ae137e53a3027d881b9273a2c26d8b1cb746d867a572e76a0068bd360c5161f8ec2f8bce2e1ebbd60da4cffbd

    • SSDEEP

      3072:xhOmTsF93UYfwC6GIout3WVi/8HCpi8rY9AABa1YRMxl1522cJ1g:xcm4FmowdHoS3WV28HCddWhRO1Lc4

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks