Overview

overview

10

Static

static

3

9c62d9c67a...cs.exe

windows7-x64

10

9c62d9c67a...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9c62d9c67ae26ef75a6c952fe78f84e0_NeikiAnalytics.exe

  • Size

    55KB

  • Sample

    240519-hzf35afh96

  • MD5

    9c62d9c67ae26ef75a6c952fe78f84e0

  • SHA1

    3c74041f850c8cdb524c9999a22a99ef16507f08

  • SHA256

    d7833d30868008db1ab2c7afe0d7266abe2ca7bf0d2a0b95f3fc8b42a433c337

  • SHA512

    7fa55f64361be7bfaf3ba12f77417e187e922a5c2163bb3dd07643ba92a9354aefd659a096739fe828537d7d548b6bf43a417321a833150fc9ce0c6e1eecbe0a

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFv:ymb3NkkiQ3mdBjFIFv

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      9c62d9c67ae26ef75a6c952fe78f84e0_NeikiAnalytics.exe

    • Size

      55KB

    • MD5

      9c62d9c67ae26ef75a6c952fe78f84e0

    • SHA1

      3c74041f850c8cdb524c9999a22a99ef16507f08

    • SHA256

      d7833d30868008db1ab2c7afe0d7266abe2ca7bf0d2a0b95f3fc8b42a433c337

    • SHA512

      7fa55f64361be7bfaf3ba12f77417e187e922a5c2163bb3dd07643ba92a9354aefd659a096739fe828537d7d548b6bf43a417321a833150fc9ce0c6e1eecbe0a

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFv:ymb3NkkiQ3mdBjFIFv

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks