Overview

overview

10

Static

static

3

49be45e2cc...cs.exe

windows7-x64

10

49be45e2cc...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    49be45e2cc1ae91b3e5e421e3ff03ed0_NeikiAnalytics.exe

  • Size

    244KB

  • Sample

    240519-18fstsdd2x

  • MD5

    49be45e2cc1ae91b3e5e421e3ff03ed0

  • SHA1

    62e27990f8732d5b7fdc2e3677ed2356418f93e0

  • SHA256

    013e8f62166cd077a8201d7dd106614a9c481c09edad3dfc7439ba12938d01ed

  • SHA512

    6b31091d9f6161a9034dc5caf557b76a129b90471ccd65c849c92e7caf89bfe90778826ad8bc31a813df623f73b6c736e84032c8ee2fe6f8be71d8c32ba0a89d

  • SSDEEP

    6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFR4:n3C9uD6AUDCa4NYmR4

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      49be45e2cc1ae91b3e5e421e3ff03ed0_NeikiAnalytics.exe

    • Size

      244KB

    • MD5

      49be45e2cc1ae91b3e5e421e3ff03ed0

    • SHA1

      62e27990f8732d5b7fdc2e3677ed2356418f93e0

    • SHA256

      013e8f62166cd077a8201d7dd106614a9c481c09edad3dfc7439ba12938d01ed

    • SHA512

      6b31091d9f6161a9034dc5caf557b76a129b90471ccd65c849c92e7caf89bfe90778826ad8bc31a813df623f73b6c736e84032c8ee2fe6f8be71d8c32ba0a89d

    • SSDEEP

      6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFR4:n3C9uD6AUDCa4NYmR4

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks