Overview

overview

10

Static

static

3

NEAS.d99d9...30.exe

windows7-x64

10

NEAS.d99d9...30.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.d99d90cb82f41585510627e0a64fcd30.exe

  • Size

    469KB

  • Sample

    231101-gbj97sba7y

  • MD5

    d99d90cb82f41585510627e0a64fcd30

  • SHA1

    3e1a02f6bef8b0f535e9aaed6ac2360add08fe7d

  • SHA256

    f655b1ecc5942d37b6bc6d2ece1ffb5dcde648720066577051bb3197485ae491

  • SHA512

    ed8785490168f03feda784d02377e9e638d348c0f130e74f1382c838e6bbe623a5d69461f402ae3a67bec8bd9b2c493437045cae7fd4b742742aaaeb09a934de

  • SSDEEP

    6144:n3C9BRo7MlrWKo+lS0Le4xRSAoq78yoyfx93sYtXCvE8x:n3C9yMo+S0L9xRnoq7H9pw88x

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.d99d90cb82f41585510627e0a64fcd30.exe

    • Size

      469KB

    • MD5

      d99d90cb82f41585510627e0a64fcd30

    • SHA1

      3e1a02f6bef8b0f535e9aaed6ac2360add08fe7d

    • SHA256

      f655b1ecc5942d37b6bc6d2ece1ffb5dcde648720066577051bb3197485ae491

    • SHA512

      ed8785490168f03feda784d02377e9e638d348c0f130e74f1382c838e6bbe623a5d69461f402ae3a67bec8bd9b2c493437045cae7fd4b742742aaaeb09a934de

    • SSDEEP

      6144:n3C9BRo7MlrWKo+lS0Le4xRSAoq78yoyfx93sYtXCvE8x:n3C9yMo+S0L9xRnoq7H9pw88x

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks