Overview

overview

10

Static

static

7

NEAS.2fe7d...JC.exe

windows7-x64

10

NEAS.2fe7d...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.2fe7d3a09cac5fb379566b9cf7934fa0_JC.exe

  • Size

    114KB

  • Sample

    231102-mv5cdacg25

  • MD5

    2fe7d3a09cac5fb379566b9cf7934fa0

  • SHA1

    957a7cd8856791f36e1df74c94bcc0fb0bc47780

  • SHA256

    719d3d491e842626e6ebc6ee2716828a2e3377e69fbf516b3d0fb4c578560719

  • SHA512

    a3939c263dc1ed7d98c116e9868e2f3b7d388fa7fa0a9ebfeb5cbaa8cf2df05fcd90440991e3f4706c7012a4f2966352cdc127cd307888d4d4f68729b21c9a64

  • SSDEEP

    3072:9hOmTsF93UYfwC6GIoutz5yLpcgDE4JQqC:9cm4FmowdHoS4Qp

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.2fe7d3a09cac5fb379566b9cf7934fa0_JC.exe

    • Size

      114KB

    • MD5

      2fe7d3a09cac5fb379566b9cf7934fa0

    • SHA1

      957a7cd8856791f36e1df74c94bcc0fb0bc47780

    • SHA256

      719d3d491e842626e6ebc6ee2716828a2e3377e69fbf516b3d0fb4c578560719

    • SHA512

      a3939c263dc1ed7d98c116e9868e2f3b7d388fa7fa0a9ebfeb5cbaa8cf2df05fcd90440991e3f4706c7012a4f2966352cdc127cd307888d4d4f68729b21c9a64

    • SSDEEP

      3072:9hOmTsF93UYfwC6GIoutz5yLpcgDE4JQqC:9cm4FmowdHoS4Qp

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks