Overview

overview

10

Static

static

7

NEAS.20780...40.exe

windows7-x64

10

NEAS.20780...40.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.207802496ac63f40bc0088ae6512bf40.exe

  • Size

    349KB

  • Sample

    231113-gs3g4sah33

  • MD5

    207802496ac63f40bc0088ae6512bf40

  • SHA1

    8672800dd5785a5a5f9e6727884c2152fc8ed8c2

  • SHA256

    776655cbff7da1a01ad82ae77a1bb544081fa78fae838980d04160739c90bc7c

  • SHA512

    7ee4828b44763f5f97dc311e2acc8ebb9f8848a67b293d75076c33f825b5073385ad6f53267caf74091d7b3673e3a49fe592b2fa26ff5a4bb2b44434454b9955

  • SSDEEP

    6144:9cm4FmowdHoSyAszBd+aQz0pMDLOq43wQnO:/4wFHoSy1zBjA1DLOj3wQnO

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.207802496ac63f40bc0088ae6512bf40.exe

    • Size

      349KB

    • MD5

      207802496ac63f40bc0088ae6512bf40

    • SHA1

      8672800dd5785a5a5f9e6727884c2152fc8ed8c2

    • SHA256

      776655cbff7da1a01ad82ae77a1bb544081fa78fae838980d04160739c90bc7c

    • SHA512

      7ee4828b44763f5f97dc311e2acc8ebb9f8848a67b293d75076c33f825b5073385ad6f53267caf74091d7b3673e3a49fe592b2fa26ff5a4bb2b44434454b9955

    • SSDEEP

      6144:9cm4FmowdHoSyAszBd+aQz0pMDLOq43wQnO:/4wFHoSy1zBjA1DLOj3wQnO

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks