Overview

overview

10

Static

static

7

5007621f22...cs.exe

windows7-x64

10

5007621f22...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5007621f22b924d5d3f3e30b82802a90_NeikiAnalytics.exe

  • Size

    198KB

  • Sample

    240519-cktg1sdb88

  • MD5

    5007621f22b924d5d3f3e30b82802a90

  • SHA1

    595291a701377288895ef9a9775940244bf7ab75

  • SHA256

    6694dca32c848562263df584ce3fb502d9294b776db439ae7500c56042177bbc

  • SHA512

    9e3cf394c47381007f4718f41f271780e1a98466494d68db035fa8fe1d2c9b8e23b925dafd73411e3fdf75f2bdec5bd1ca218812844bbaca3e315e7adbcbdd9a

  • SSDEEP

    3072:xhOmTsF93UYfwC6GIout3WVi/8HCpi8rY9AABa1YRMxl1522cJ1uIo:xcm4FmowdHoS3WV28HCddWhRO1Lc9o

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      5007621f22b924d5d3f3e30b82802a90_NeikiAnalytics.exe

    • Size

      198KB

    • MD5

      5007621f22b924d5d3f3e30b82802a90

    • SHA1

      595291a701377288895ef9a9775940244bf7ab75

    • SHA256

      6694dca32c848562263df584ce3fb502d9294b776db439ae7500c56042177bbc

    • SHA512

      9e3cf394c47381007f4718f41f271780e1a98466494d68db035fa8fe1d2c9b8e23b925dafd73411e3fdf75f2bdec5bd1ca218812844bbaca3e315e7adbcbdd9a

    • SSDEEP

      3072:xhOmTsF93UYfwC6GIout3WVi/8HCpi8rY9AABa1YRMxl1522cJ1uIo:xcm4FmowdHoS3WV28HCddWhRO1Lc9o

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks