Overview

overview

10

Static

static

3

3bc87265df...cs.exe

windows7-x64

10

3bc87265df...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3bc87265dfecc00cbfa0d48563252d50_NeikiAnalytics.exe

  • Size

    449KB

  • Sample

    240519-bckdpsaa62

  • MD5

    3bc87265dfecc00cbfa0d48563252d50

  • SHA1

    5c89ca25c619e2379ac0e928b6724754f5a8453e

  • SHA256

    4023dcf16ed1481084385f9623e33eaf4b8b53b063d1490a440f5caa2a3b640b

  • SHA512

    3e2722a385b524f16568315052266373fbf1f4765f092805b65a9f8131e1af266905d706584a8837c1d6c36e78f4575a31c6f0ba7ddd90e92a4876c8c274c336

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbex:q7Tc2NYHUrAwfMp3CDx

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      3bc87265dfecc00cbfa0d48563252d50_NeikiAnalytics.exe

    • Size

      449KB

    • MD5

      3bc87265dfecc00cbfa0d48563252d50

    • SHA1

      5c89ca25c619e2379ac0e928b6724754f5a8453e

    • SHA256

      4023dcf16ed1481084385f9623e33eaf4b8b53b063d1490a440f5caa2a3b640b

    • SHA512

      3e2722a385b524f16568315052266373fbf1f4765f092805b65a9f8131e1af266905d706584a8837c1d6c36e78f4575a31c6f0ba7ddd90e92a4876c8c274c336

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbex:q7Tc2NYHUrAwfMp3CDx

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks