Overview

overview

10

Static

static

3

712d44a283...cs.exe

windows7-x64

10

712d44a283...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    712d44a283a5b97e816d1d989a79e340_NeikiAnalytics.exe

  • Size

    68KB

  • Sample

    240519-exynlsaa8w

  • MD5

    712d44a283a5b97e816d1d989a79e340

  • SHA1

    374b7d0815ffd301b6032b34930331f97c2f9647

  • SHA256

    6c79532d140d71388a5e4deea089b4a82605e7cc3b180af938dfe4e0125e06c9

  • SHA512

    470c5662f5fca7c990cb932f21ccbf6a21c1c857ba932d23da05da2d59c7b2527896b67a6a950f20f4cd08a54f9ccf88f9d4519ac1496d54b986c1eebbdb6ec1

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIfv7+afCD+QsQbLj:ymb3NkkiQ3mdBjFIfvTfCD+HG

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      712d44a283a5b97e816d1d989a79e340_NeikiAnalytics.exe

    • Size

      68KB

    • MD5

      712d44a283a5b97e816d1d989a79e340

    • SHA1

      374b7d0815ffd301b6032b34930331f97c2f9647

    • SHA256

      6c79532d140d71388a5e4deea089b4a82605e7cc3b180af938dfe4e0125e06c9

    • SHA512

      470c5662f5fca7c990cb932f21ccbf6a21c1c857ba932d23da05da2d59c7b2527896b67a6a950f20f4cd08a54f9ccf88f9d4519ac1496d54b986c1eebbdb6ec1

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIfv7+afCD+QsQbLj:ymb3NkkiQ3mdBjFIfvTfCD+HG

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks