Overview

overview

10

Static

static

7

77b6922546...cs.exe

windows7-x64

10

77b6922546...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    77b6922546f2ff7ca8df0962f4d56ec0_NeikiAnalytics.exe

  • Size

    366KB

  • Sample

    240519-feyrbsbb94

  • MD5

    77b6922546f2ff7ca8df0962f4d56ec0

  • SHA1

    181c78a8ed673eec81cca1a484c209f9a6b52aae

  • SHA256

    ef93abcdc94041dcb37510ceb7498e4c8159f7115bed30cc0c7e4cc8f612cd18

  • SHA512

    7b428b72d36d6ab439ea6e53a6c2cba6a663588f7929ce1a4b7d92c6b3264ba2fd1377e53d1433a1d75fda050271291ac1f9b716111d712a41a0a0b82f818a50

  • SSDEEP

    6144:kcm4FmowdHoSphraHcpOFltH4tiAlSpgFZAzwdjcIlSpgFZZr3GSMS:y4wFHoS3eFplAlSpgFZAKjcIlSpgFZZR

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      77b6922546f2ff7ca8df0962f4d56ec0_NeikiAnalytics.exe

    • Size

      366KB

    • MD5

      77b6922546f2ff7ca8df0962f4d56ec0

    • SHA1

      181c78a8ed673eec81cca1a484c209f9a6b52aae

    • SHA256

      ef93abcdc94041dcb37510ceb7498e4c8159f7115bed30cc0c7e4cc8f612cd18

    • SHA512

      7b428b72d36d6ab439ea6e53a6c2cba6a663588f7929ce1a4b7d92c6b3264ba2fd1377e53d1433a1d75fda050271291ac1f9b716111d712a41a0a0b82f818a50

    • SSDEEP

      6144:kcm4FmowdHoSphraHcpOFltH4tiAlSpgFZAzwdjcIlSpgFZZr3GSMS:y4wFHoS3eFplAlSpgFZAKjcIlSpgFZZR

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks