Overview

overview

10

Static

static

3

ed519531ed...cs.exe

windows7-x64

10

ed519531ed...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ed519531ed654563bed89f3b20b76330_NeikiAnalytics.exe

  • Size

    89KB

  • Sample

    240518-t2qacsce4s

  • MD5

    ed519531ed654563bed89f3b20b76330

  • SHA1

    69b6530baf016d0b09d12e0357d9c01c471ac14d

  • SHA256

    644051ec1dc45e7d86241f881a7b0fd9326bc506cf2c60fa37883d9cee1dd5e6

  • SHA512

    3ae427fd843fd502f7aaa183c548f44a11e8ea96fc1e5729504b4c174328620845a4f0c9d9e1422301f218ee4f8c3aee2a43f9ffe553fd242bdbd926d08f3700

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDISoFGDvPGB1haZJOzD:ymb3NkkiQ3mdBjFIk7+czG

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      ed519531ed654563bed89f3b20b76330_NeikiAnalytics.exe

    • Size

      89KB

    • MD5

      ed519531ed654563bed89f3b20b76330

    • SHA1

      69b6530baf016d0b09d12e0357d9c01c471ac14d

    • SHA256

      644051ec1dc45e7d86241f881a7b0fd9326bc506cf2c60fa37883d9cee1dd5e6

    • SHA512

      3ae427fd843fd502f7aaa183c548f44a11e8ea96fc1e5729504b4c174328620845a4f0c9d9e1422301f218ee4f8c3aee2a43f9ffe553fd242bdbd926d08f3700

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDISoFGDvPGB1haZJOzD:ymb3NkkiQ3mdBjFIk7+czG

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks