Overview

overview

10

Static

static

7

NEAS.e079b...d0.exe

windows7-x64

10

NEAS.e079b...d0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.e079b35ba3a1a55b086763f4af46f9d0.exe

  • Size

    96KB

  • Sample

    231101-rpp3qaac97

  • MD5

    e079b35ba3a1a55b086763f4af46f9d0

  • SHA1

    4f6b4c86236e3b4d4a10f2b9209da25d17778383

  • SHA256

    90c22a31ab6b4e91a2f8d0674999fe395a5210b5dc386a7308313f4518d122c4

  • SHA512

    1707449d11eca6ee3ac7d69df76580b6d6207b86b02376139aa885d6343308dfc200144803e2f3cdd2969a15033a4f0c7b7200a49dc46c550b5c91f60316c990

  • SSDEEP

    1536:xvQBeOGtrYS3srx93UBWfwC6Ggnouy82F13w801j35b4N4AO3GkxvA2:xhOmTsF93UYfwC6GIout03g35bCIhd

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.e079b35ba3a1a55b086763f4af46f9d0.exe

    • Size

      96KB

    • MD5

      e079b35ba3a1a55b086763f4af46f9d0

    • SHA1

      4f6b4c86236e3b4d4a10f2b9209da25d17778383

    • SHA256

      90c22a31ab6b4e91a2f8d0674999fe395a5210b5dc386a7308313f4518d122c4

    • SHA512

      1707449d11eca6ee3ac7d69df76580b6d6207b86b02376139aa885d6343308dfc200144803e2f3cdd2969a15033a4f0c7b7200a49dc46c550b5c91f60316c990

    • SSDEEP

      1536:xvQBeOGtrYS3srx93UBWfwC6Ggnouy82F13w801j35b4N4AO3GkxvA2:xhOmTsF93UYfwC6GIout03g35bCIhd

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks