Overview

overview

10

Static

static

7

NEAS.c99e8...JC.exe

windows7-x64

10

NEAS.c99e8...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.c99e8423c0196c2272ccce648ac7fce0_JC.exe

  • Size

    68KB

  • Sample

    231102-nk3w8sba5y

  • MD5

    c99e8423c0196c2272ccce648ac7fce0

  • SHA1

    8b317cb579f30446898fa45d03ec489461dd826f

  • SHA256

    bd395486c0cbc756e2571f5b7a0ee0180f7c8d774031df58995b5d24777a497c

  • SHA512

    bb4511e653fe601c720f4fbd96b16a16886767aebfee00e0a2bb86403293a4305895386d28516a4948ff46281db4e5a95d40112e1c294387a293f1c615f08655

  • SSDEEP

    1536:vvQBeOGtrYS3srx93UBWfwC6Ggnouy8rrUxAqQQqNh/hd:vhOmTsF93UYfwC6GIoutrAxAqQNhz

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.c99e8423c0196c2272ccce648ac7fce0_JC.exe

    • Size

      68KB

    • MD5

      c99e8423c0196c2272ccce648ac7fce0

    • SHA1

      8b317cb579f30446898fa45d03ec489461dd826f

    • SHA256

      bd395486c0cbc756e2571f5b7a0ee0180f7c8d774031df58995b5d24777a497c

    • SHA512

      bb4511e653fe601c720f4fbd96b16a16886767aebfee00e0a2bb86403293a4305895386d28516a4948ff46281db4e5a95d40112e1c294387a293f1c615f08655

    • SSDEEP

      1536:vvQBeOGtrYS3srx93UBWfwC6Ggnouy8rrUxAqQQqNh/hd:vhOmTsF93UYfwC6GIoutrAxAqQNhz

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks