Overview

overview

10

Static

static

7

3933c4c660...cs.exe

windows7-x64

10

3933c4c660...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3933c4c660d4024672ba40d807eb7b90_NeikiAnalytics.exe

  • Size

    80KB

  • Sample

    240519-a6lyyshd3s

  • MD5

    3933c4c660d4024672ba40d807eb7b90

  • SHA1

    7f86efed4494760323736b2db0a6dd28c2d24329

  • SHA256

    4a68d44900a4d2dd0bdd3384b82897c44aeb326a296443b3e347032847a4d6b6

  • SHA512

    72448088723f82752ccdc86e4df82b7877819fb65b8e65e91ee1897443c33d075dd948894d82a17fed8f21a7ff365bc0ba6d6f33396eadea519ad0db621783e6

  • SSDEEP

    1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6TVqMJ897:zhOmTsF93UYfwC6GIoutiTU2HVS6cMJs

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      3933c4c660d4024672ba40d807eb7b90_NeikiAnalytics.exe

    • Size

      80KB

    • MD5

      3933c4c660d4024672ba40d807eb7b90

    • SHA1

      7f86efed4494760323736b2db0a6dd28c2d24329

    • SHA256

      4a68d44900a4d2dd0bdd3384b82897c44aeb326a296443b3e347032847a4d6b6

    • SHA512

      72448088723f82752ccdc86e4df82b7877819fb65b8e65e91ee1897443c33d075dd948894d82a17fed8f21a7ff365bc0ba6d6f33396eadea519ad0db621783e6

    • SSDEEP

      1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6TVqMJ897:zhOmTsF93UYfwC6GIoutiTU2HVS6cMJs

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks