blackmoon | 7efc8c5773b8996353453ab9cb02746dd3a4300fb0f897623c7fc50453f7ff0c | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

ef08ab8fa9...cs.exe

windows7-x64

ef08ab8fa9...cs.exe

windows10-2004-x64

Sharing

General

Target

ef08ab8fa9b6c767f1a1f8006c42f110_NeikiAnalytics.exe
Size

492KB
Sample

240517-thf8cafd3t
MD5

ef08ab8fa9b6c767f1a1f8006c42f110
SHA1

430558510a4ed473e1b52572e52ae2beaaac8de0
SHA256

7efc8c5773b8996353453ab9cb02746dd3a4300fb0f897623c7fc50453f7ff0c
SHA512

801c0b09a031d06f83b2e7a5b09c27718e3929b9ff1e2f6295c413439b7531d7c6c31fc1f7dcf286c1aaa2102cfeadd8706f0d5a57c04aa75c3d1634e2038a00
SSDEEP

6144:n3C9BRo7MlrWKo+lS0Le4xRSAoq78yoyfx93svqTbWL5wEpOQ9DRRv:n3C9yMo+S0L9xRnoq7H9QYcmeN9DX

Score

10^/10

blackmoon banker trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ef08ab8fa9b6c767f1a1f8006c42f110_NeikiAnalytics.exe

Resource

win7-20240221-en

blackmoon banker trojan upx

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

ef08ab8fa9b6c767f1a1f8006c42f110_NeikiAnalytics.exe

Resource

win10v2004-20240508-en

blackmoon banker trojan upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  ef08ab8fa9b6c767f1a1f8006c42f110_NeikiAnalytics.exe
- Size
  
  492KB
- MD5
  
  ef08ab8fa9b6c767f1a1f8006c42f110
- SHA1
  
  430558510a4ed473e1b52572e52ae2beaaac8de0
- SHA256
  
  7efc8c5773b8996353453ab9cb02746dd3a4300fb0f897623c7fc50453f7ff0c
- SHA512
  
  801c0b09a031d06f83b2e7a5b09c27718e3929b9ff1e2f6295c413439b7531d7c6c31fc1f7dcf286c1aaa2102cfeadd8706f0d5a57c04aa75c3d1634e2038a00
- SSDEEP
  
  6144:n3C9BRo7MlrWKo+lS0Le4xRSAoq78yoyfx93svqTbWL5wEpOQ9DRRv:n3C9yMo+S0L9xRnoq7H9QYcmeN9DX
Score

10^/10

blackmoon banker trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

blackmoonbankertrojanupx

behavioral2

blackmoonbankertrojanupx

© 2018-2025

Terms | Privacy