Overview

overview

10

Static

static

7

23d2562433...cs.exe

windows7-x64

10

23d2562433...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    23d2562433303108e6efeac264d75030_NeikiAnalytics.exe

  • Size

    454KB

  • Sample

    240518-3gvtsaec48

  • MD5

    23d2562433303108e6efeac264d75030

  • SHA1

    003382a99d8cde5aef9a622a203532100846e7fd

  • SHA256

    1afeeb82be5fac0d4eeff75f60e7d5c269bf036c87b62f2202fc69d7d3a4f808

  • SHA512

    1c1ef3f41d51c6c5237d7da5aff4bf175c8bdf336b6bb22ba5e89c1a68efa247ddc6f430d0bcc7d3e8d8894ed0c1ee3fa0ea492446b8769d02c36334e76bcfea

  • SSDEEP

    12288:y4wFHoS3eFp3IDvSbh5nPYERAAUDCa4NYm9:HFp3lz1XUDCaGYm9

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      23d2562433303108e6efeac264d75030_NeikiAnalytics.exe

    • Size

      454KB

    • MD5

      23d2562433303108e6efeac264d75030

    • SHA1

      003382a99d8cde5aef9a622a203532100846e7fd

    • SHA256

      1afeeb82be5fac0d4eeff75f60e7d5c269bf036c87b62f2202fc69d7d3a4f808

    • SHA512

      1c1ef3f41d51c6c5237d7da5aff4bf175c8bdf336b6bb22ba5e89c1a68efa247ddc6f430d0bcc7d3e8d8894ed0c1ee3fa0ea492446b8769d02c36334e76bcfea

    • SSDEEP

      12288:y4wFHoS3eFp3IDvSbh5nPYERAAUDCa4NYm9:HFp3lz1XUDCaGYm9

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks