Overview

overview

10

Static

static

3

64077e2f7c...cs.exe

windows7-x64

10

64077e2f7c...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    64077e2f7c240f6b867714991fb026e0_NeikiAnalytics.exe

  • Size

    122KB

  • Sample

    240519-d1ty6agd25

  • MD5

    64077e2f7c240f6b867714991fb026e0

  • SHA1

    a11c0cef428ed7ea3596848398ce7ff178f750ff

  • SHA256

    95636a9ba65901a514a5c046d681dc6fce981ccd6548310b46a239f72fbb132d

  • SHA512

    a5a9036e338c5033d656cd3a804f122e3def250e10e3f6957854597349b96bf91b40734ed1e04bde5678ca170ce288ddf1fd7d394fdcb42fefbe71fb694285bd

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFo7LAIRUohDLSULrCimBaH8UH30w0E:n3C9BRo/AIuunSppaH8m3D9

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      64077e2f7c240f6b867714991fb026e0_NeikiAnalytics.exe

    • Size

      122KB

    • MD5

      64077e2f7c240f6b867714991fb026e0

    • SHA1

      a11c0cef428ed7ea3596848398ce7ff178f750ff

    • SHA256

      95636a9ba65901a514a5c046d681dc6fce981ccd6548310b46a239f72fbb132d

    • SHA512

      a5a9036e338c5033d656cd3a804f122e3def250e10e3f6957854597349b96bf91b40734ed1e04bde5678ca170ce288ddf1fd7d394fdcb42fefbe71fb694285bd

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFo7LAIRUohDLSULrCimBaH8UH30w0E:n3C9BRo/AIuunSppaH8m3D9

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks