Overview

overview

10

Static

static

7

38c6d58e44...cs.exe

windows7-x64

10

38c6d58e44...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    38c6d58e440a65ee44fc961a0b793680_NeikiAnalytics.exe

  • Size

    88KB

  • Sample

    240519-a5e41shc5v

  • MD5

    38c6d58e440a65ee44fc961a0b793680

  • SHA1

    e0880382ab272d34bd37f74d5dc573bab6a9499c

  • SHA256

    67a13a339ea8d78dfabf31e698ee59c5f896c260c51a9972f06a13fa5a9e3ee2

  • SHA512

    912df861a24feba3a417a593d95c7f6c864a85375fb6e3da5d2c3cff55384a4c5f6f6140f7aacb93573a52bb4322e281cc018406a34b9eb440dcf42dde8c8050

  • SSDEEP

    1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+rS:chOmTsF93UYfwC6GIoutieyhC2lbgGi1

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      38c6d58e440a65ee44fc961a0b793680_NeikiAnalytics.exe

    • Size

      88KB

    • MD5

      38c6d58e440a65ee44fc961a0b793680

    • SHA1

      e0880382ab272d34bd37f74d5dc573bab6a9499c

    • SHA256

      67a13a339ea8d78dfabf31e698ee59c5f896c260c51a9972f06a13fa5a9e3ee2

    • SHA512

      912df861a24feba3a417a593d95c7f6c864a85375fb6e3da5d2c3cff55384a4c5f6f6140f7aacb93573a52bb4322e281cc018406a34b9eb440dcf42dde8c8050

    • SSDEEP

      1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+rS:chOmTsF93UYfwC6GIoutieyhC2lbgGi1

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks