Overview

overview

10

Static

static

3

NEAS.dfc62...80.exe

windows7-x64

10

NEAS.dfc62...80.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.dfc6283543d6bb11a71a00ffe067a380.exe

  • Size

    69KB

  • Sample

    231022-v3dhmabf78

  • MD5

    dfc6283543d6bb11a71a00ffe067a380

  • SHA1

    6c60c664b1861b3e37767081c97cee85a2a8cf03

  • SHA256

    b4cbf386ae75675cfa8f7c9ca4e321f83bdf8252c12c3049600994584a1745e1

  • SHA512

    c7207d6df9a37b9faec63f20b69a795f5f97d805c7ccb485e636d022c23429862ffd72815817c9439bcbdb0c63e17e9f4c1ea1a9b284c5f1d16a5def992c1bb6

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFd7uv:ymb3NkkiQ3mdBjFIFd7uv

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.dfc6283543d6bb11a71a00ffe067a380.exe

    • Size

      69KB

    • MD5

      dfc6283543d6bb11a71a00ffe067a380

    • SHA1

      6c60c664b1861b3e37767081c97cee85a2a8cf03

    • SHA256

      b4cbf386ae75675cfa8f7c9ca4e321f83bdf8252c12c3049600994584a1745e1

    • SHA512

      c7207d6df9a37b9faec63f20b69a795f5f97d805c7ccb485e636d022c23429862ffd72815817c9439bcbdb0c63e17e9f4c1ea1a9b284c5f1d16a5def992c1bb6

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFd7uv:ymb3NkkiQ3mdBjFIFd7uv

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks