Overview

overview

10

Static

static

3

8b7cf6a238...cs.exe

windows7-x64

10

8b7cf6a238...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8b7cf6a2384c121ec64b1a3c6fab8020_NeikiAnalytics.exe

  • Size

    67KB

  • Sample

    240519-gsqhjsdg2s

  • MD5

    8b7cf6a2384c121ec64b1a3c6fab8020

  • SHA1

    be8666189a652e2f0c2079ca2de89fc4e9f34f17

  • SHA256

    65a5868cc59c3fd38ebf2eabe525bcff18d76d9f32bac54af64032a40a4e5c80

  • SHA512

    9565331afa792c8f5b17b3a93b16ac8de175e12a69bba88d7651dd2c1c43dd572bb262e05486a289074b1c0edd640fd6ee2a07803d8b7e5c354d6085323f928d

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfsIQl:ymb3NkkiQ3mdBjFI4VAIQl

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      8b7cf6a2384c121ec64b1a3c6fab8020_NeikiAnalytics.exe

    • Size

      67KB

    • MD5

      8b7cf6a2384c121ec64b1a3c6fab8020

    • SHA1

      be8666189a652e2f0c2079ca2de89fc4e9f34f17

    • SHA256

      65a5868cc59c3fd38ebf2eabe525bcff18d76d9f32bac54af64032a40a4e5c80

    • SHA512

      9565331afa792c8f5b17b3a93b16ac8de175e12a69bba88d7651dd2c1c43dd572bb262e05486a289074b1c0edd640fd6ee2a07803d8b7e5c354d6085323f928d

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfsIQl:ymb3NkkiQ3mdBjFI4VAIQl

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks