Overview

overview

10

Static

static

3

469aecf0de...cs.exe

windows7-x64

10

469aecf0de...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    469aecf0debeb3f81fe7f1b985aa2a90_NeikiAnalytics.exe

  • Size

    83KB

  • Sample

    240519-1zhwtscc76

  • MD5

    469aecf0debeb3f81fe7f1b985aa2a90

  • SHA1

    22a51e522ba10aa8fd756fbbf735a9be8ed6b8ec

  • SHA256

    056f264018a9e06fe860358c8561dd939b2178791695cb1d0fd2984b5e746b38

  • SHA512

    865a5e4f987186fce72a4058c347a72766d04894d9e2c2f0cdd5d6cc7890dbe75ce6fb398b6ce7957284bcc53845bd8a55f1abb19428a8eb11f82893997c1cd1

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSLCBCO+HlMO7s0yOj:ymb3NkkiQ3mdBjFIwLMoHW8y0

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      469aecf0debeb3f81fe7f1b985aa2a90_NeikiAnalytics.exe

    • Size

      83KB

    • MD5

      469aecf0debeb3f81fe7f1b985aa2a90

    • SHA1

      22a51e522ba10aa8fd756fbbf735a9be8ed6b8ec

    • SHA256

      056f264018a9e06fe860358c8561dd939b2178791695cb1d0fd2984b5e746b38

    • SHA512

      865a5e4f987186fce72a4058c347a72766d04894d9e2c2f0cdd5d6cc7890dbe75ce6fb398b6ce7957284bcc53845bd8a55f1abb19428a8eb11f82893997c1cd1

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSLCBCO+HlMO7s0yOj:ymb3NkkiQ3mdBjFIwLMoHW8y0

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks