Overview

overview

10

Static

static

3

NEAS.60bf8...90.exe

windows7-x64

10

NEAS.60bf8...90.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.60bf8eea9133172dabe0f3d17f745f90.exe

  • Size

    487KB

  • Sample

    231102-t8mstagg3z

  • MD5

    60bf8eea9133172dabe0f3d17f745f90

  • SHA1

    67a9b3b62a60d984b26964afd099bdfa0934578d

  • SHA256

    bd9e157de2f266271e4a8c5af39bde696351e0fb799b08ae46d5f46fea095d5f

  • SHA512

    07401b5e94d2a1136338ae2dcc5ff3f9ed1d2f18ca9b171e73828738e59557a52c219f185857776ee13260163383cd8d4e53c1c28bee9b2cd946b3abf3481289

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwT+aZKlumArSPBXY1V8o:q7Tc2NYHUrAwT+OKomA+5Y1V8o

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.60bf8eea9133172dabe0f3d17f745f90.exe

    • Size

      487KB

    • MD5

      60bf8eea9133172dabe0f3d17f745f90

    • SHA1

      67a9b3b62a60d984b26964afd099bdfa0934578d

    • SHA256

      bd9e157de2f266271e4a8c5af39bde696351e0fb799b08ae46d5f46fea095d5f

    • SHA512

      07401b5e94d2a1136338ae2dcc5ff3f9ed1d2f18ca9b171e73828738e59557a52c219f185857776ee13260163383cd8d4e53c1c28bee9b2cd946b3abf3481289

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwT+aZKlumArSPBXY1V8o:q7Tc2NYHUrAwT+OKomA+5Y1V8o

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks