Overview

overview

10

Static

static

3

94bd7e6fde...cs.exe

windows7-x64

10

94bd7e6fde...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    94bd7e6fde6f46a398f0daa563f7d010_NeikiAnalytics.exe

  • Size

    200KB

  • Sample

    240519-hhdaxafa22

  • MD5

    94bd7e6fde6f46a398f0daa563f7d010

  • SHA1

    1281107cf29978dd9ed18b6ca52c65a08419a2f2

  • SHA256

    00aeeb078bf345b552d4562116fc756edfbb32071a1a8219ec46d21b1b727fd6

  • SHA512

    1f5acf27c6723c1612ce285320757e91b6edb6ef321d1ebbf12646e471c033438a67b19192a9aad8a5fd54dcc9237167ec389bbbc74577cce595be4130c7127e

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFIi/0RU6QeYQsm71vPmc51+GqekBJCvr6zJBUt6id:n3C9BRIG0asYFm71m8+GdkB9k

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      94bd7e6fde6f46a398f0daa563f7d010_NeikiAnalytics.exe

    • Size

      200KB

    • MD5

      94bd7e6fde6f46a398f0daa563f7d010

    • SHA1

      1281107cf29978dd9ed18b6ca52c65a08419a2f2

    • SHA256

      00aeeb078bf345b552d4562116fc756edfbb32071a1a8219ec46d21b1b727fd6

    • SHA512

      1f5acf27c6723c1612ce285320757e91b6edb6ef321d1ebbf12646e471c033438a67b19192a9aad8a5fd54dcc9237167ec389bbbc74577cce595be4130c7127e

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFIi/0RU6QeYQsm71vPmc51+GqekBJCvr6zJBUt6id:n3C9BRIG0asYFm71m8+GdkB9k

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks