Overview

overview

10

Static

static

3

NEAS.8b784...b0.exe

windows7-x64

10

NEAS.8b784...b0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.8b7847f65e4cec8534395610669e34b0.exe

  • Size

    449KB

  • Sample

    231013-zalqraeb43

  • MD5

    8b7847f65e4cec8534395610669e34b0

  • SHA1

    ecb2fc32826e69f2b4954f8455576bf8cfcc973c

  • SHA256

    f5b6e2bef066e636199c92e444be71575548a2e1b6a915acfc4a6f6b568eafce

  • SHA512

    971cf6ce8219ed2cc38854fd58cdee4c8753f05774f19ad52d00183c5b23f965846c1872250c76c6eef4fa272cbaac729cb8acb75f53a6150ec7f4488f775362

  • SSDEEP

    12288:57Tc1WjdpKGATTk/6Aihgth7L/QOKs+Q/RIVBjdB/22LX1O6:TZpTATrAihgth7L/QOKs+Q/RIVBjdB/X

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.8b7847f65e4cec8534395610669e34b0.exe

    • Size

      449KB

    • MD5

      8b7847f65e4cec8534395610669e34b0

    • SHA1

      ecb2fc32826e69f2b4954f8455576bf8cfcc973c

    • SHA256

      f5b6e2bef066e636199c92e444be71575548a2e1b6a915acfc4a6f6b568eafce

    • SHA512

      971cf6ce8219ed2cc38854fd58cdee4c8753f05774f19ad52d00183c5b23f965846c1872250c76c6eef4fa272cbaac729cb8acb75f53a6150ec7f4488f775362

    • SSDEEP

      12288:57Tc1WjdpKGATTk/6Aihgth7L/QOKs+Q/RIVBjdB/22LX1O6:TZpTATrAihgth7L/QOKs+Q/RIVBjdB/X

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks