Overview

overview

10

Static

static

7

NEAS.a962d...60.exe

windows7-x64

10

NEAS.a962d...60.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.a962dcff459442d0b4e4a5af5e110960.exe

  • Size

    113KB

  • Sample

    231102-vazkdscb97

  • MD5

    a962dcff459442d0b4e4a5af5e110960

  • SHA1

    cd55f12866a0fab4aa0d8761642ed2aa639d5f86

  • SHA256

    e14a0dd3abf6d928cf66ce4e117b3adb8246d94f89fbf25616eb7cee985e6b2c

  • SHA512

    861b4901afb0b9d4d6dda2fb2ca3a0c3bb13de808964f115e94f1abb96a7ad54d9f471b7587ad2606511e111ac0fa401a1027d963ed19eeb8d00d09e811b466e

  • SSDEEP

    3072:chOmTsF93UYfwC6GIout5pi8rY9AABa1D1DV6LYoF:ccm4FmowdHoS5ddWi1KYS

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.a962dcff459442d0b4e4a5af5e110960.exe

    • Size

      113KB

    • MD5

      a962dcff459442d0b4e4a5af5e110960

    • SHA1

      cd55f12866a0fab4aa0d8761642ed2aa639d5f86

    • SHA256

      e14a0dd3abf6d928cf66ce4e117b3adb8246d94f89fbf25616eb7cee985e6b2c

    • SHA512

      861b4901afb0b9d4d6dda2fb2ca3a0c3bb13de808964f115e94f1abb96a7ad54d9f471b7587ad2606511e111ac0fa401a1027d963ed19eeb8d00d09e811b466e

    • SSDEEP

      3072:chOmTsF93UYfwC6GIout5pi8rY9AABa1D1DV6LYoF:ccm4FmowdHoS5ddWi1KYS

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks