Overview

overview

10

Static

static

3

27b238ba2e...cs.exe

windows7-x64

10

27b238ba2e...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    27b238ba2e5f3ea6741a2e126943d360_NeikiAnalytics.exe

  • Size

    445KB

  • Sample

    240518-3pzgyaee5v

  • MD5

    27b238ba2e5f3ea6741a2e126943d360

  • SHA1

    cc5a7f31e8111854b014d2afa0a381221715294a

  • SHA256

    ac5277d3fc00236c0400f95cbdc6da5a4742daeb50a072bd825f1d83f1daad81

  • SHA512

    c5b0af6b9522a3b28d8375a376e296bb235cb2735fa503ccfb1edc63aa4080d2552e73bd80ac9654e40ee05fe269240244172344c538a4a83acb03c30eb9057d

  • SSDEEP

    6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0p5WI09JY:n3C9ytvn8whkb4i3e3GFO6JY

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      27b238ba2e5f3ea6741a2e126943d360_NeikiAnalytics.exe

    • Size

      445KB

    • MD5

      27b238ba2e5f3ea6741a2e126943d360

    • SHA1

      cc5a7f31e8111854b014d2afa0a381221715294a

    • SHA256

      ac5277d3fc00236c0400f95cbdc6da5a4742daeb50a072bd825f1d83f1daad81

    • SHA512

      c5b0af6b9522a3b28d8375a376e296bb235cb2735fa503ccfb1edc63aa4080d2552e73bd80ac9654e40ee05fe269240244172344c538a4a83acb03c30eb9057d

    • SSDEEP

      6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0p5WI09JY:n3C9ytvn8whkb4i3e3GFO6JY

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks