Overview

overview

10

Static

static

7

a97511db55...cs.exe

windows7-x64

10

a97511db55...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a97511db55e2d57b758dfe4d8b120730_NeikiAnalytics.exe

  • Size

    367KB

  • Sample

    240519-j3qmeaaa5v

  • MD5

    a97511db55e2d57b758dfe4d8b120730

  • SHA1

    7f9528c72cf97ac48b639d1db88d8760f9067c06

  • SHA256

    cfc5b4558cf1d85715fc7fa9a6edfa2cf3cfaf017a953d2437a81a31efbe2b60

  • SHA512

    792006767f3a06eb6ba31890aac59a7978c92ad2f61e9c5a92081981ccd2bf286f4dd67e2c7bcd8cb517891d5d023dec5682a1f4600ab090b4cb9b9893479731

  • SSDEEP

    6144:9cm4FmowdHoSdSyEAxyx/ZrTTr4qIMgE8z:/4wFHoSQuxy3rTXIM18z

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      a97511db55e2d57b758dfe4d8b120730_NeikiAnalytics.exe

    • Size

      367KB

    • MD5

      a97511db55e2d57b758dfe4d8b120730

    • SHA1

      7f9528c72cf97ac48b639d1db88d8760f9067c06

    • SHA256

      cfc5b4558cf1d85715fc7fa9a6edfa2cf3cfaf017a953d2437a81a31efbe2b60

    • SHA512

      792006767f3a06eb6ba31890aac59a7978c92ad2f61e9c5a92081981ccd2bf286f4dd67e2c7bcd8cb517891d5d023dec5682a1f4600ab090b4cb9b9893479731

    • SSDEEP

      6144:9cm4FmowdHoSdSyEAxyx/ZrTTr4qIMgE8z:/4wFHoSQuxy3rTXIM18z

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks