Overview

overview

10

Static

static

7

e0b45e4f9f...cs.exe

windows7-x64

10

e0b45e4f9f...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e0b45e4f9ff85ac94540ad37ef5e7260_NeikiAnalytics.exe

  • Size

    277KB

  • Sample

    240518-sq3wmshh48

  • MD5

    e0b45e4f9ff85ac94540ad37ef5e7260

  • SHA1

    3ed058cdbfc813b018534f291f32b25b9d17ee05

  • SHA256

    177be2961174b2e553e79d9b3922794490c6524c89cc507b359c16f328d135d8

  • SHA512

    f31806c57a5e21b2fd21afdc94f8ba3db19f04e9aaa8547c5d4a8bb2213808878ba67cec31d7fa08499200c9c20e5b8c074474ee64af9c74db68d42e8c93a174

  • SSDEEP

    6144:7cm4FmowdHoSoXSBcm4Vcm4FmowdHoSphra+cm4FMhraHcpOaKHpc:B4wFHoSoXW434wFHoS3eg4aeFaKHpc

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      e0b45e4f9ff85ac94540ad37ef5e7260_NeikiAnalytics.exe

    • Size

      277KB

    • MD5

      e0b45e4f9ff85ac94540ad37ef5e7260

    • SHA1

      3ed058cdbfc813b018534f291f32b25b9d17ee05

    • SHA256

      177be2961174b2e553e79d9b3922794490c6524c89cc507b359c16f328d135d8

    • SHA512

      f31806c57a5e21b2fd21afdc94f8ba3db19f04e9aaa8547c5d4a8bb2213808878ba67cec31d7fa08499200c9c20e5b8c074474ee64af9c74db68d42e8c93a174

    • SSDEEP

      6144:7cm4FmowdHoSoXSBcm4Vcm4FmowdHoSphra+cm4FMhraHcpOaKHpc:B4wFHoSoXW434wFHoS3eg4aeFaKHpc

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks