Overview

overview

10

Static

static

3

15da6ff50c...cs.exe

windows7-x64

10

15da6ff50c...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    15da6ff50c57734fd5fea002c76a2670_NeikiAnalytics.exe

  • Size

    75KB

  • Sample

    240518-2kdh8scb26

  • MD5

    15da6ff50c57734fd5fea002c76a2670

  • SHA1

    2ea1564ddd79191acd83cd17745b387a12755281

  • SHA256

    f4463d2638f7b545912b56e05b1d1fb876a525a9d96630e762bdcb3e2649c34b

  • SHA512

    e3a4d9befd0cacc5f1ef877f0ba9a49b4138e5fe1c82a20246a60b2ea94002bacbd64ec15b7c7f03067560b8dd703e8d82be20ef101f022a665cb9cc4118b727

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAX8gu3Gno9yvrjKD:ymb3NkkiQ3mdBjFo68t3Gno9I4

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      15da6ff50c57734fd5fea002c76a2670_NeikiAnalytics.exe

    • Size

      75KB

    • MD5

      15da6ff50c57734fd5fea002c76a2670

    • SHA1

      2ea1564ddd79191acd83cd17745b387a12755281

    • SHA256

      f4463d2638f7b545912b56e05b1d1fb876a525a9d96630e762bdcb3e2649c34b

    • SHA512

      e3a4d9befd0cacc5f1ef877f0ba9a49b4138e5fe1c82a20246a60b2ea94002bacbd64ec15b7c7f03067560b8dd703e8d82be20ef101f022a665cb9cc4118b727

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAX8gu3Gno9yvrjKD:ymb3NkkiQ3mdBjFo68t3Gno9I4

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks