Overview

overview

10

Static

static

7

44442751b6...cs.exe

windows7-x64

10

44442751b6...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    44442751b625f50a02571456e7e25470_NeikiAnalytics.exe

  • Size

    402KB

  • Sample

    240519-bwvzjsbe25

  • MD5

    44442751b625f50a02571456e7e25470

  • SHA1

    c79a33735c71be77224ccafeab986e78503c12d9

  • SHA256

    2e3a09c761a471dce2e51f26bdc5d14f332a0863fdf18678616994798ad77865

  • SHA512

    8c067444247a4567d66a013e1332b22817f19cfc8928ee489492d5c4e6647e5920670884870c17b78c327ace05049015e667636616f42d832444b31fd5ce69e4

  • SSDEEP

    6144:kcm4FmowdHoSph3Ymu8wdHoSM05d34iWRbzami3v:y4wFHoS3zuxHoSTd34iWRhif

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      44442751b625f50a02571456e7e25470_NeikiAnalytics.exe

    • Size

      402KB

    • MD5

      44442751b625f50a02571456e7e25470

    • SHA1

      c79a33735c71be77224ccafeab986e78503c12d9

    • SHA256

      2e3a09c761a471dce2e51f26bdc5d14f332a0863fdf18678616994798ad77865

    • SHA512

      8c067444247a4567d66a013e1332b22817f19cfc8928ee489492d5c4e6647e5920670884870c17b78c327ace05049015e667636616f42d832444b31fd5ce69e4

    • SSDEEP

      6144:kcm4FmowdHoSph3Ymu8wdHoSM05d34iWRbzami3v:y4wFHoS3zuxHoSTd34iWRhif

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks