Overview

overview

10

Static

static

7

7a9fc5c9da...cs.exe

windows7-x64

10

7a9fc5c9da...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7a9fc5c9da2876bd0a7388eb28623810_NeikiAnalytics.exe

  • Size

    277KB

  • Sample

    240519-fmg4jsbd8x

  • MD5

    7a9fc5c9da2876bd0a7388eb28623810

  • SHA1

    9bffe7904915719b00659eaeb9930eeb80ed5708

  • SHA256

    346159b2a1ee0394d9903beb738b6b2e49d534861aec1d230f52cb28b7aa5abe

  • SHA512

    fb6965acd9e1d9da840388fa26707205c09a69b19cca9a300b7116bc3b7391a1671b7f5f869ea22040e0302d61a9d731925150c8a63f00c099af0018e831cf35

  • SSDEEP

    6144:7cm4FmowdHoSoXSBcm4Vcm4FmowdHoSphra+cm4FMhraHcpOaKHpn8:B4wFHoSoXW434wFHoS3eg4aeFaKHp8

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      7a9fc5c9da2876bd0a7388eb28623810_NeikiAnalytics.exe

    • Size

      277KB

    • MD5

      7a9fc5c9da2876bd0a7388eb28623810

    • SHA1

      9bffe7904915719b00659eaeb9930eeb80ed5708

    • SHA256

      346159b2a1ee0394d9903beb738b6b2e49d534861aec1d230f52cb28b7aa5abe

    • SHA512

      fb6965acd9e1d9da840388fa26707205c09a69b19cca9a300b7116bc3b7391a1671b7f5f869ea22040e0302d61a9d731925150c8a63f00c099af0018e831cf35

    • SSDEEP

      6144:7cm4FmowdHoSoXSBcm4Vcm4FmowdHoSphra+cm4FMhraHcpOaKHpn8:B4wFHoSoXW434wFHoS3eg4aeFaKHp8

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks