Overview

overview

10

Static

static

3

30d89bd6bf...cs.exe

windows7-x64

10

30d89bd6bf...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    30d89bd6bf9c6c985d54deac59b13950_NeikiAnalytics.exe

  • Size

    64KB

  • Sample

    240519-ak94naga3t

  • MD5

    30d89bd6bf9c6c985d54deac59b13950

  • SHA1

    6f548cd8c4373f1d8f909ad0d484bc65042a1253

  • SHA256

    0b91f75a39428b6cd766f2daab2f881e85a11aea61a6999e210587e808aee546

  • SHA512

    0985759885199a86b56f732d55f342b782114402ebe7e05c6f30b0b3577da7fcc19ca1c97d15de26d6f4e27137a03289e7d157d7556204103496504c06b29dae

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6Mu/ePS3AM:ymb3NkkiQ3mdBjFI46TQM

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      30d89bd6bf9c6c985d54deac59b13950_NeikiAnalytics.exe

    • Size

      64KB

    • MD5

      30d89bd6bf9c6c985d54deac59b13950

    • SHA1

      6f548cd8c4373f1d8f909ad0d484bc65042a1253

    • SHA256

      0b91f75a39428b6cd766f2daab2f881e85a11aea61a6999e210587e808aee546

    • SHA512

      0985759885199a86b56f732d55f342b782114402ebe7e05c6f30b0b3577da7fcc19ca1c97d15de26d6f4e27137a03289e7d157d7556204103496504c06b29dae

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6Mu/ePS3AM:ymb3NkkiQ3mdBjFI46TQM

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks