Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

NEAS.ee1b7...e0.exe

windows7-x64

10

NEAS.ee1b7...e0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.ee1b7c98c2c2889b3772dda012f857e0.exe

  • Size

    443KB

  • Sample

    231021-1gdt6adb78

  • MD5

    ee1b7c98c2c2889b3772dda012f857e0

  • SHA1

    9f30ac26c3f96905eab51c5e377d787e43dad8ea

  • SHA256

    ca9d8fac06bed29e34bb28c400e83dd67dec758698f0aac45250e25b74ce8d8b

  • SHA512

    33be673f4e79b77c3e7e36855cbca48bce03515775ed94604ede5feeba893d2d62865f76ee83a81ada611051f1185cadc9db6d23422d71f055cc95e608088cf9

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKb:q7Tc2NYHUrAwfMp3CN

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.ee1b7c98c2c2889b3772dda012f857e0.exe

    • Size

      443KB

    • MD5

      ee1b7c98c2c2889b3772dda012f857e0

    • SHA1

      9f30ac26c3f96905eab51c5e377d787e43dad8ea

    • SHA256

      ca9d8fac06bed29e34bb28c400e83dd67dec758698f0aac45250e25b74ce8d8b

    • SHA512

      33be673f4e79b77c3e7e36855cbca48bce03515775ed94604ede5feeba893d2d62865f76ee83a81ada611051f1185cadc9db6d23422d71f055cc95e608088cf9

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKb:q7Tc2NYHUrAwfMp3CN

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks