Overview

overview

10

Static

static

7

NEAS.2a15e...f0.exe

windows7-x64

10

NEAS.2a15e...f0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.2a15ec9a98e902c8f72ab2f30c31a5f0.exe

  • Size

    305KB

  • Sample

    231014-wd3a5aae43

  • MD5

    2a15ec9a98e902c8f72ab2f30c31a5f0

  • SHA1

    8a5c4d668bcb349200dbb210781af4c57e442267

  • SHA256

    9b34869af9ec96b6a0e096cabf6e39f2bde52308ab2549dbfd3d877449fdd85c

  • SHA512

    355d049e1adb9d79cb4e0e4cffb61c64318c7860f409ca29edecd788f79e64b7912053f0799ecf5eb630a96dda2fd2344864026eaa3152f2a022e6abdfc84a6d

  • SSDEEP

    6144:/cm4FmowdHoSyZuo3F2Y9iE9MAkOCOu0EajNVBZr6y2WW:N4wFHoSMu49P9mN

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.2a15ec9a98e902c8f72ab2f30c31a5f0.exe

    • Size

      305KB

    • MD5

      2a15ec9a98e902c8f72ab2f30c31a5f0

    • SHA1

      8a5c4d668bcb349200dbb210781af4c57e442267

    • SHA256

      9b34869af9ec96b6a0e096cabf6e39f2bde52308ab2549dbfd3d877449fdd85c

    • SHA512

      355d049e1adb9d79cb4e0e4cffb61c64318c7860f409ca29edecd788f79e64b7912053f0799ecf5eb630a96dda2fd2344864026eaa3152f2a022e6abdfc84a6d

    • SSDEEP

      6144:/cm4FmowdHoSyZuo3F2Y9iE9MAkOCOu0EajNVBZr6y2WW:N4wFHoSMu49P9mN

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks