Overview

overview

10

Static

static

7

NEAS.aa74d...e0.exe

windows7-x64

10

NEAS.aa74d...e0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.aa74db367509416aa58dd16763e282e0.exe

  • Size

    314KB

  • Sample

    231013-zcq39adf9w

  • MD5

    aa74db367509416aa58dd16763e282e0

  • SHA1

    c3dc51bd2d4782e9942ceed415ec89db4ea29dfc

  • SHA256

    e9f0c8ceecaf7d9ebcf1c7de5630f01fa623206b7c5e99ed31966bc6094f74f1

  • SHA512

    ec437d7c66090310cf6f9199943ca770796f438a6c3775492dcea0eaa1c6fa0f849d63ab73c85381088dc96353027985198afcf35bf71055d653ded2226c52bc

  • SSDEEP

    3072:xhOmTsF93UYfwC6GIoutqiJ8mqtbfUVwD4h87V5YTXgpVlh6u7aKhsXJpjVGIVH1:xcm4FmowdHoSPubL4dXmij

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.aa74db367509416aa58dd16763e282e0.exe

    • Size

      314KB

    • MD5

      aa74db367509416aa58dd16763e282e0

    • SHA1

      c3dc51bd2d4782e9942ceed415ec89db4ea29dfc

    • SHA256

      e9f0c8ceecaf7d9ebcf1c7de5630f01fa623206b7c5e99ed31966bc6094f74f1

    • SHA512

      ec437d7c66090310cf6f9199943ca770796f438a6c3775492dcea0eaa1c6fa0f849d63ab73c85381088dc96353027985198afcf35bf71055d653ded2226c52bc

    • SSDEEP

      3072:xhOmTsF93UYfwC6GIoutqiJ8mqtbfUVwD4h87V5YTXgpVlh6u7aKhsXJpjVGIVH1:xcm4FmowdHoSPubL4dXmij

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks