Overview

overview

10

Static

static

7

3dd538fa4f...cs.exe

windows7-x64

10

3dd538fa4f...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3dd538fa4fca97d90d532198d86a03f0_NeikiAnalytics.exe

  • Size

    75KB

  • Sample

    240519-bhcwtaad74

  • MD5

    3dd538fa4fca97d90d532198d86a03f0

  • SHA1

    c131a0fdf79f64187038b3b5cae09cec09aad286

  • SHA256

    9f8bc7922c517bfe11739f1e6c5c1a2e93bb50a7e55a14eba16b067dc45a764f

  • SHA512

    3242aa8c2155fc414ba6649e02bf417be3548274ac424fc5219206ba6a937f4834eff27e4c81e2c5d2eee2d06be7a40eccf31aa5071858842615fe8a83599a25

  • SSDEEP

    1536:9vQBeOGtrYS3srx93UBWfwC6Ggnouy8PbhnyLFWoFLAxZhMDzE8x:9hOmTsF93UYfwC6GIoutz5yLpOSDP

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      3dd538fa4fca97d90d532198d86a03f0_NeikiAnalytics.exe

    • Size

      75KB

    • MD5

      3dd538fa4fca97d90d532198d86a03f0

    • SHA1

      c131a0fdf79f64187038b3b5cae09cec09aad286

    • SHA256

      9f8bc7922c517bfe11739f1e6c5c1a2e93bb50a7e55a14eba16b067dc45a764f

    • SHA512

      3242aa8c2155fc414ba6649e02bf417be3548274ac424fc5219206ba6a937f4834eff27e4c81e2c5d2eee2d06be7a40eccf31aa5071858842615fe8a83599a25

    • SSDEEP

      1536:9vQBeOGtrYS3srx93UBWfwC6Ggnouy8PbhnyLFWoFLAxZhMDzE8x:9hOmTsF93UYfwC6GIoutz5yLpOSDP

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks