Overview

overview

10

Static

static

3

NEAS.afe57...90.exe

windows7-x64

10

NEAS.afe57...90.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.afe579405f395fa98c58f745b7453b90.exe

  • Size

    217KB

  • Sample

    231016-w6723sbc88

  • MD5

    afe579405f395fa98c58f745b7453b90

  • SHA1

    d7c5c8c76ecfefafecce8546257b0b2f10cc80cd

  • SHA256

    e43f9f4e4957dd00af705a73cb500ccd6d8145cffdd529f809681f5613fb34a3

  • SHA512

    65d404f893ed9795c9a5e607775a03763fecd88544fe92163da551f2de6ed259d91cc450a59755d40a1ff6644faa1f168837d882168c9a7c5788ef5479c5f4fe

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFo73PYP1lri3KoSV31z8z:n3C9BRo7MlrWKo+lI

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.afe579405f395fa98c58f745b7453b90.exe

    • Size

      217KB

    • MD5

      afe579405f395fa98c58f745b7453b90

    • SHA1

      d7c5c8c76ecfefafecce8546257b0b2f10cc80cd

    • SHA256

      e43f9f4e4957dd00af705a73cb500ccd6d8145cffdd529f809681f5613fb34a3

    • SHA512

      65d404f893ed9795c9a5e607775a03763fecd88544fe92163da551f2de6ed259d91cc450a59755d40a1ff6644faa1f168837d882168c9a7c5788ef5479c5f4fe

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFo73PYP1lri3KoSV31z8z:n3C9BRo7MlrWKo+lI

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks