Overview

overview

10

Static

static

3

38e303210b...cs.exe

windows7-x64

10

38e303210b...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    38e303210b24f25252112f3839ee82a0_NeikiAnalytics.exe

  • Size

    58KB

  • Sample

    240519-a5mtvshc6w

  • MD5

    38e303210b24f25252112f3839ee82a0

  • SHA1

    cfcb4b9eec0fe4e0904e6f3307e60d6da4f2a111

  • SHA256

    aa7a8f51c0a8652283000c655b8ba2ca881f86b766d6650a30393b83f2a8fa66

  • SHA512

    093e4440c61f5d3907c6d184bc28a3d5f93c1b9417bb023e958f7be8cdc21460cf6998b1776b826065aad5735d40283d1e62910a96b0382f9da8378741ea796a

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsImse:ymb3NkkiQ3mdBjFIsIFe

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      38e303210b24f25252112f3839ee82a0_NeikiAnalytics.exe

    • Size

      58KB

    • MD5

      38e303210b24f25252112f3839ee82a0

    • SHA1

      cfcb4b9eec0fe4e0904e6f3307e60d6da4f2a111

    • SHA256

      aa7a8f51c0a8652283000c655b8ba2ca881f86b766d6650a30393b83f2a8fa66

    • SHA512

      093e4440c61f5d3907c6d184bc28a3d5f93c1b9417bb023e958f7be8cdc21460cf6998b1776b826065aad5735d40283d1e62910a96b0382f9da8378741ea796a

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsImse:ymb3NkkiQ3mdBjFIsIFe

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks