Overview

overview

10

Static

static

3

e8d37fc842...cs.exe

windows7-x64

10

e8d37fc842...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e8d37fc84202ec304a88862cb98f5d10_NeikiAnalytics.exe

  • Size

    226KB

  • Sample

    240518-tjaf7abf92

  • MD5

    e8d37fc84202ec304a88862cb98f5d10

  • SHA1

    d3e44ba24ec427a3e0f31f3141f8deb9f24857b4

  • SHA256

    0c55bf5f9f120e45485acecbb7184aee674d1a8eb9399994f0c7bf5e6c4cd3e7

  • SHA512

    5080594617e046566307d12b0bea5d435c8b4627459b8ee66f20d807a962106f4203d82ec14bd85a760a8512b67d3eba7fca7a8363af7a2c4f147b7c7ea1fe63

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFo73PYP1lri3KoSV31x47WBd:n3C9BRo7MlrWKo+lxd

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      e8d37fc84202ec304a88862cb98f5d10_NeikiAnalytics.exe

    • Size

      226KB

    • MD5

      e8d37fc84202ec304a88862cb98f5d10

    • SHA1

      d3e44ba24ec427a3e0f31f3141f8deb9f24857b4

    • SHA256

      0c55bf5f9f120e45485acecbb7184aee674d1a8eb9399994f0c7bf5e6c4cd3e7

    • SHA512

      5080594617e046566307d12b0bea5d435c8b4627459b8ee66f20d807a962106f4203d82ec14bd85a760a8512b67d3eba7fca7a8363af7a2c4f147b7c7ea1fe63

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFo73PYP1lri3KoSV31x47WBd:n3C9BRo7MlrWKo+lxd

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks