Overview

overview

10

Static

static

3

852244d80a...cs.exe

windows7-x64

10

852244d80a...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    852244d80aa08a338b325c5b7bebf200_NeikiAnalytics.exe

  • Size

    273KB

  • Sample

    240519-gc971sch3x

  • MD5

    852244d80aa08a338b325c5b7bebf200

  • SHA1

    07cfff8c7259b1b127f4944add7c9f85acfa9810

  • SHA256

    3ff007620cf3f48c98c138365957b94b4b27ef7cd81afe879caa65d22fa281af

  • SHA512

    f942dfcc25b6af7ae80ac1589a28066a68254001115b7a27cfb9a6f6ce2d9f06c80641beb2a6c6a150354f4abc8b0ffc7056e35f30d589ca003a0aa8acc90e26

  • SSDEEP

    3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFR:8cm7ImGddXmNt251UriZFR

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      852244d80aa08a338b325c5b7bebf200_NeikiAnalytics.exe

    • Size

      273KB

    • MD5

      852244d80aa08a338b325c5b7bebf200

    • SHA1

      07cfff8c7259b1b127f4944add7c9f85acfa9810

    • SHA256

      3ff007620cf3f48c98c138365957b94b4b27ef7cd81afe879caa65d22fa281af

    • SHA512

      f942dfcc25b6af7ae80ac1589a28066a68254001115b7a27cfb9a6f6ce2d9f06c80641beb2a6c6a150354f4abc8b0ffc7056e35f30d589ca003a0aa8acc90e26

    • SSDEEP

      3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFR:8cm7ImGddXmNt251UriZFR

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks