Overview

overview

10

Static

static

7

d4ea555cd7...cs.exe

windows7-x64

10

d4ea555cd7...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d4ea555cd795b07b8f1e22efe67e06e0_NeikiAnalytics.exe

  • Size

    173KB

  • Sample

    240518-rjrpcsfd44

  • MD5

    d4ea555cd795b07b8f1e22efe67e06e0

  • SHA1

    d9f221f7ff41552a0b02069af5fca55d7b1c3fda

  • SHA256

    182d8acd14f6cd6a66cbeb6781f621812023d0222ba2548e866d82a8bc94e230

  • SHA512

    3537ae723906726616aa50d79ac448a93de7c106b4fe12aa6d53a8d0391663c6ab0a009b1038c502407eb083d7805d57e378a2b6d7c0dfbe716b7278df5e1421

  • SSDEEP

    3072:6hOmTsF93UYfwC6GIoutQ0tSe5yLpcka62c+8+dRNN7Yk+6C2Wp:6cm4FmowdHoSQ0tH6lCXb7Ybp

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      d4ea555cd795b07b8f1e22efe67e06e0_NeikiAnalytics.exe

    • Size

      173KB

    • MD5

      d4ea555cd795b07b8f1e22efe67e06e0

    • SHA1

      d9f221f7ff41552a0b02069af5fca55d7b1c3fda

    • SHA256

      182d8acd14f6cd6a66cbeb6781f621812023d0222ba2548e866d82a8bc94e230

    • SHA512

      3537ae723906726616aa50d79ac448a93de7c106b4fe12aa6d53a8d0391663c6ab0a009b1038c502407eb083d7805d57e378a2b6d7c0dfbe716b7278df5e1421

    • SSDEEP

      3072:6hOmTsF93UYfwC6GIoutQ0tSe5yLpcka62c+8+dRNN7Yk+6C2Wp:6cm4FmowdHoSQ0tH6lCXb7Ybp

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks