Overview

overview

10

Static

static

7

770aa1f26b...cs.exe

windows7-x64

10

770aa1f26b...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    770aa1f26ba2796e63d97f9806cd73d0_NeikiAnalytics.exe

  • Size

    60KB

  • Sample

    240519-fc8thsah7z

  • MD5

    770aa1f26ba2796e63d97f9806cd73d0

  • SHA1

    275fdb669f5a90b1944553ffdac73b16835f0801

  • SHA256

    38fa2fe9ca0914d99fbff7ba0220dbfe297d996b3c15b537243e6a91c856fe1d

  • SHA512

    f88e8f6aa7a48270b26bb2706bda3b5f14013a132bed01e104e6774a1c7754e6f005dd283ee5f17d829fa85d5d9c5a3484011ff80e7656ae87432bd0a896fec0

  • SSDEEP

    1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+EMdFX:zhOmTsF93UYfwC6GIoutiTWMdF

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      770aa1f26ba2796e63d97f9806cd73d0_NeikiAnalytics.exe

    • Size

      60KB

    • MD5

      770aa1f26ba2796e63d97f9806cd73d0

    • SHA1

      275fdb669f5a90b1944553ffdac73b16835f0801

    • SHA256

      38fa2fe9ca0914d99fbff7ba0220dbfe297d996b3c15b537243e6a91c856fe1d

    • SHA512

      f88e8f6aa7a48270b26bb2706bda3b5f14013a132bed01e104e6774a1c7754e6f005dd283ee5f17d829fa85d5d9c5a3484011ff80e7656ae87432bd0a896fec0

    • SSDEEP

      1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+EMdFX:zhOmTsF93UYfwC6GIoutiTWMdF

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks