Overview

overview

10

Static

static

3

84c6cc46dd...cs.exe

windows7-x64

10

84c6cc46dd...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    84c6cc46dd5452c0be87ae666d72f430_NeikiAnalytics.exe

  • Size

    53KB

  • Sample

    240519-gcf9yach86

  • MD5

    84c6cc46dd5452c0be87ae666d72f430

  • SHA1

    1b6f7f9896e8743a8d5057e8e6c9d435d2bc5d8b

  • SHA256

    664983ead9d5151312efc1b3dced8a2e1594467f404a9eb036791c79be65c780

  • SHA512

    cea0023a5c6bfd5cca3d61be5dd7e9b804b9e16eae3572776c1cdafa8ee2dca0bcb542e21cd33ff6e0e8aadeeaec209a6c1159c205a8b31ee155efc157f18919

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFy8:ymb3NkkiQ3mdBjFIFb

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      84c6cc46dd5452c0be87ae666d72f430_NeikiAnalytics.exe

    • Size

      53KB

    • MD5

      84c6cc46dd5452c0be87ae666d72f430

    • SHA1

      1b6f7f9896e8743a8d5057e8e6c9d435d2bc5d8b

    • SHA256

      664983ead9d5151312efc1b3dced8a2e1594467f404a9eb036791c79be65c780

    • SHA512

      cea0023a5c6bfd5cca3d61be5dd7e9b804b9e16eae3572776c1cdafa8ee2dca0bcb542e21cd33ff6e0e8aadeeaec209a6c1159c205a8b31ee155efc157f18919

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFy8:ymb3NkkiQ3mdBjFIFb

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks