Overview

overview

10

Static

static

3

4701ff811f...cs.exe

windows7-x64

10

4701ff811f...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4701ff811f195dd46b4cc7db574f0950_NeikiAnalytics.exe

  • Size

    60KB

  • Sample

    240519-11hbpacf2v

  • MD5

    4701ff811f195dd46b4cc7db574f0950

  • SHA1

    1b80331f2a39ad75cd1572a4d75fba69d4d969f5

  • SHA256

    14ff53f499bfcfeb13db1047b84103ca9dc11c8f68a3fced0b82af70e6f8d0c9

  • SHA512

    5ff349ce3e051d990ebead0b8b99ddd4bf4f6f7e5720de11ec2884b7f9353b64950b0b247a2f81fc06c6d8563ad12de0d418e5a5933caea87b6d2c21eb3db60d

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yU+7:ymb3NkkiQ3mdBjF0y77

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      4701ff811f195dd46b4cc7db574f0950_NeikiAnalytics.exe

    • Size

      60KB

    • MD5

      4701ff811f195dd46b4cc7db574f0950

    • SHA1

      1b80331f2a39ad75cd1572a4d75fba69d4d969f5

    • SHA256

      14ff53f499bfcfeb13db1047b84103ca9dc11c8f68a3fced0b82af70e6f8d0c9

    • SHA512

      5ff349ce3e051d990ebead0b8b99ddd4bf4f6f7e5720de11ec2884b7f9353b64950b0b247a2f81fc06c6d8563ad12de0d418e5a5933caea87b6d2c21eb3db60d

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yU+7:ymb3NkkiQ3mdBjF0y77

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks