Overview

overview

10

Static

static

3

NEAS.a51c8...90.exe

windows7-x64

10

NEAS.a51c8...90.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.a51c80e90d112ef37cb1fb7a38b63590.exe

  • Size

    362KB

  • Sample

    231117-wz1pesde41

  • MD5

    a51c80e90d112ef37cb1fb7a38b63590

  • SHA1

    ca641a5b6fcde1c3cc2c34e53a82eb67041b5bee

  • SHA256

    5198e54339d494537ded1c0633eed8bdb8f9a20bd64bb1dddf689e2aa28e9893

  • SHA512

    6a33e4be72f52f75426e1c951f3f69371f277e50649a3c71f43ac104034cc011ebdfde2116210f2e883e9b355f590755d40efea01b7f7b7b945d665e77d08ddf

  • SSDEEP

    6144:n3C9BRIG0asYFm71mJl3/X8mak5gNv9rC8IwLaYNUvtTxTKMM0:n3C9uYA7i3/stR9HGYyvtTxTKMD

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      NEAS.a51c80e90d112ef37cb1fb7a38b63590.exe

    • Size

      362KB

    • MD5

      a51c80e90d112ef37cb1fb7a38b63590

    • SHA1

      ca641a5b6fcde1c3cc2c34e53a82eb67041b5bee

    • SHA256

      5198e54339d494537ded1c0633eed8bdb8f9a20bd64bb1dddf689e2aa28e9893

    • SHA512

      6a33e4be72f52f75426e1c951f3f69371f277e50649a3c71f43ac104034cc011ebdfde2116210f2e883e9b355f590755d40efea01b7f7b7b945d665e77d08ddf

    • SSDEEP

      6144:n3C9BRIG0asYFm71mJl3/X8mak5gNv9rC8IwLaYNUvtTxTKMM0:n3C9uYA7i3/stR9HGYyvtTxTKMD

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks