Overview

overview

10

Static

static

7

NEAS.56ce6...50.exe

windows7-x64

10

NEAS.56ce6...50.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.56ce6c47457f4d09bb9babe3e4b34f50.exe

  • Size

    268KB

  • Sample

    231102-t8dvxage8z

  • MD5

    56ce6c47457f4d09bb9babe3e4b34f50

  • SHA1

    7af901ec5192e93c1a66136ca8ad73c9b1692aba

  • SHA256

    9df57ec436aba9cc2aa99a62be13fcf80717381b17232bc18efaf9d7ec22e5ff

  • SHA512

    4b936b02c81f4193919a79200e330b2d2286f9165d4a1c08470b64fa3e99e6f9c88b377a2502fea07f47c106b3c4001c5c560f171f2f9f8f5e84cb4904d922b7

  • SSDEEP

    6144:kcm4FmowdHoSphraHcpOFltH4t+IDvSXrh5g8hZTyN:y4wFHoS3eFp3IDvSbh5nP+N

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.56ce6c47457f4d09bb9babe3e4b34f50.exe

    • Size

      268KB

    • MD5

      56ce6c47457f4d09bb9babe3e4b34f50

    • SHA1

      7af901ec5192e93c1a66136ca8ad73c9b1692aba

    • SHA256

      9df57ec436aba9cc2aa99a62be13fcf80717381b17232bc18efaf9d7ec22e5ff

    • SHA512

      4b936b02c81f4193919a79200e330b2d2286f9165d4a1c08470b64fa3e99e6f9c88b377a2502fea07f47c106b3c4001c5c560f171f2f9f8f5e84cb4904d922b7

    • SSDEEP

      6144:kcm4FmowdHoSphraHcpOFltH4t+IDvSXrh5g8hZTyN:y4wFHoS3eFp3IDvSbh5nP+N

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks