Overview

overview

10

Static

static

7

282c412642...cs.exe

windows7-x64

10

282c412642...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    282c4126427836adb9e8017ca4b55080_NeikiAnalytics.exe

  • Size

    58KB

  • Sample

    240518-3q2npaee91

  • MD5

    282c4126427836adb9e8017ca4b55080

  • SHA1

    bffaa88ac2f222a79675cf79a2e5d82a92328566

  • SHA256

    0966597775c6a72add64047abedf11f1ed1cc24866f1d2151740e5e711610ca5

  • SHA512

    6b7ad72ef109c75e60302be6a97bec66f0ff085ca4f6f3e6e8ab71c98622f473a9273b1026f8faf345c8574a6d7e0486674c53f84cca91252df7e7903e5005e5

  • SSDEEP

    1536:kvQBeOGtrYS3srx93UBWfwC6Ggnouy8p5yAXNG1mjtREVM5L:khOmTsF93UYfwC6GIoutpY918ck

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      282c4126427836adb9e8017ca4b55080_NeikiAnalytics.exe

    • Size

      58KB

    • MD5

      282c4126427836adb9e8017ca4b55080

    • SHA1

      bffaa88ac2f222a79675cf79a2e5d82a92328566

    • SHA256

      0966597775c6a72add64047abedf11f1ed1cc24866f1d2151740e5e711610ca5

    • SHA512

      6b7ad72ef109c75e60302be6a97bec66f0ff085ca4f6f3e6e8ab71c98622f473a9273b1026f8faf345c8574a6d7e0486674c53f84cca91252df7e7903e5005e5

    • SSDEEP

      1536:kvQBeOGtrYS3srx93UBWfwC6Ggnouy8p5yAXNG1mjtREVM5L:khOmTsF93UYfwC6GIoutpY918ck

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks