Overview

overview

10

Static

static

3

7e2ad2f2be...cs.exe

windows7-x64

10

7e2ad2f2be...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7e2ad2f2bec82f25d5c233f3bec51530_NeikiAnalytics.exe

  • Size

    134KB

  • Sample

    240519-fvheaabh3w

  • MD5

    7e2ad2f2bec82f25d5c233f3bec51530

  • SHA1

    61bfaf1c499c2efc14877011005b1fd898a6d63e

  • SHA256

    778fca23aa12b132439d36f0be16f82400633da40f2e37f1533ebb1ecf334407

  • SHA512

    b658d345e0d17b16f721e2948fc7948e2342d89655a246d357d0d0eb9727eaa7eec53fbe0d4169edf5aa4ae0ed527cedc5493179930d29b70e06a9b6ed61a5a6

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFWXkj7afoHVpx+dGor/:n3C9BRW0j/1px+dGU

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      7e2ad2f2bec82f25d5c233f3bec51530_NeikiAnalytics.exe

    • Size

      134KB

    • MD5

      7e2ad2f2bec82f25d5c233f3bec51530

    • SHA1

      61bfaf1c499c2efc14877011005b1fd898a6d63e

    • SHA256

      778fca23aa12b132439d36f0be16f82400633da40f2e37f1533ebb1ecf334407

    • SHA512

      b658d345e0d17b16f721e2948fc7948e2342d89655a246d357d0d0eb9727eaa7eec53fbe0d4169edf5aa4ae0ed527cedc5493179930d29b70e06a9b6ed61a5a6

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFWXkj7afoHVpx+dGor/:n3C9BRW0j/1px+dGU

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks