Overview

overview

10

Static

static

7

NEAS.d22ea...50.exe

windows7-x64

10

NEAS.d22ea...50.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.d22ea831fd44dcccca06425a9b433a50.exe

  • Size

    81KB

  • Sample

    231115-aptx8shb32

  • MD5

    d22ea831fd44dcccca06425a9b433a50

  • SHA1

    e4a6db239248efcb7a5372a6da9112683bdbc7ed

  • SHA256

    33176128ea843de3d3589775bb234a0ea5b32911ab4ca55171a8bf85dbabb6c9

  • SHA512

    20c15d78b7ab0e17677719ce9c7d42aa6f3e1b8a78fa8fe056ff717aab5d3e131486e7cb2ec4757e9cec1a3fe6e3d8929e31adfe25dca7681cef626dbbf42fd4

  • SSDEEP

    1536:xvQBeOGtrYS3srx93UBWfwC6Ggnouy8q5kNJ8mGltIIgKsQRV6NzcnD:xhOmTsF93UYfwC6GIoutqiJ8mqtbfKzY

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.d22ea831fd44dcccca06425a9b433a50.exe

    • Size

      81KB

    • MD5

      d22ea831fd44dcccca06425a9b433a50

    • SHA1

      e4a6db239248efcb7a5372a6da9112683bdbc7ed

    • SHA256

      33176128ea843de3d3589775bb234a0ea5b32911ab4ca55171a8bf85dbabb6c9

    • SHA512

      20c15d78b7ab0e17677719ce9c7d42aa6f3e1b8a78fa8fe056ff717aab5d3e131486e7cb2ec4757e9cec1a3fe6e3d8929e31adfe25dca7681cef626dbbf42fd4

    • SSDEEP

      1536:xvQBeOGtrYS3srx93UBWfwC6Ggnouy8q5kNJ8mGltIIgKsQRV6NzcnD:xhOmTsF93UYfwC6GIoutqiJ8mqtbfKzY

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks