Overview

overview

10

Static

static

3

87a035a5a3...cs.exe

windows7-x64

10

87a035a5a3...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    87a035a5a3f3cbc7b335cf06f822c590_NeikiAnalytics.exe

  • Size

    54KB

  • Sample

    240519-gjsasadc78

  • MD5

    87a035a5a3f3cbc7b335cf06f822c590

  • SHA1

    ac1dc8ce19804a55af23a459914e7cb0caecf951

  • SHA256

    7935eb10d78220f477b9e11a1b9f6aae7e6c549080d2835066f11650e6e2ac58

  • SHA512

    fd7f1cc358c06f56ea1450231b8ab3bc872119a1b87d046e67db83b98587cd16e581e4a095463a76d0fa1bb11f7b77bc605f9fe43f24857236bebe4a691e58d9

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFyP:ymb3NkkiQ3mdBjFIFu

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      87a035a5a3f3cbc7b335cf06f822c590_NeikiAnalytics.exe

    • Size

      54KB

    • MD5

      87a035a5a3f3cbc7b335cf06f822c590

    • SHA1

      ac1dc8ce19804a55af23a459914e7cb0caecf951

    • SHA256

      7935eb10d78220f477b9e11a1b9f6aae7e6c549080d2835066f11650e6e2ac58

    • SHA512

      fd7f1cc358c06f56ea1450231b8ab3bc872119a1b87d046e67db83b98587cd16e581e4a095463a76d0fa1bb11f7b77bc605f9fe43f24857236bebe4a691e58d9

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFyP:ymb3NkkiQ3mdBjFIFu

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks