Overview

overview

10

Static

static

3

NEAS.b045a...40.exe

windows7-x64

NEAS.b045a...40.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.b045a340f6937f4da398e0b21f385240.exe

  • Size

    93KB

  • Sample

    231013-zc89tsea9s

  • MD5

    b045a340f6937f4da398e0b21f385240

  • SHA1

    f6915bd9e9f4e318f1bf77537f04e9f1890a7aec

  • SHA256

    128e7b4e30e5f8814c943cae2b50da8d8c91c20dfa72b85b83545c1ac9a3d468

  • SHA512

    a097a9a10c088175ec80f9e3c8859770b3aca3b36c22eda90f4c2ab06e4f5094276c61ab52c283a9227e2958a297d07e7127141c748ac9981e99c1f8c53733f2

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDWiekja1br3GGBxfotInQD7dqe:ymb3NkkiQ3mdBjFWXkj7afounQD7d7

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.b045a340f6937f4da398e0b21f385240.exe

    • Size

      93KB

    • MD5

      b045a340f6937f4da398e0b21f385240

    • SHA1

      f6915bd9e9f4e318f1bf77537f04e9f1890a7aec

    • SHA256

      128e7b4e30e5f8814c943cae2b50da8d8c91c20dfa72b85b83545c1ac9a3d468

    • SHA512

      a097a9a10c088175ec80f9e3c8859770b3aca3b36c22eda90f4c2ab06e4f5094276c61ab52c283a9227e2958a297d07e7127141c748ac9981e99c1f8c53733f2

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDWiekja1br3GGBxfotInQD7dqe:ymb3NkkiQ3mdBjFWXkj7afounQD7d7

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks