Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

NEAS.4b653...JC.exe

windows7-x64

10

NEAS.4b653...JC.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.4b653a81e765bfe0813812fe8ae1c2e0_JC.exe

  • Size

    68KB

  • Sample

    231102-nrxc2ada98

  • MD5

    4b653a81e765bfe0813812fe8ae1c2e0

  • SHA1

    f7a2f9f1c7085f9b5b524f2c7d801d4bf7851bd8

  • SHA256

    c44d227c5f6ea7f1a3f980a0c7f64b4745ceaad2fe79892a0f749b4a5c54d2c2

  • SHA512

    d8d155dfb17545839812affb6b27d658d4dd646d866e8af88d3048fa0dfec9197589e52fccdda1748c007ee1c6030429b42441df56cf475c89de7d634d4aab93

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpi+qmP3mT:ymb3NkkiQ3mdBjFIj+qmi

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.4b653a81e765bfe0813812fe8ae1c2e0_JC.exe

    • Size

      68KB

    • MD5

      4b653a81e765bfe0813812fe8ae1c2e0

    • SHA1

      f7a2f9f1c7085f9b5b524f2c7d801d4bf7851bd8

    • SHA256

      c44d227c5f6ea7f1a3f980a0c7f64b4745ceaad2fe79892a0f749b4a5c54d2c2

    • SHA512

      d8d155dfb17545839812affb6b27d658d4dd646d866e8af88d3048fa0dfec9197589e52fccdda1748c007ee1c6030429b42441df56cf475c89de7d634d4aab93

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpi+qmP3mT:ymb3NkkiQ3mdBjFIj+qmi

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks