Overview

overview

10

Static

static

3

aa54e23f9e...cs.exe

windows7-x64

10

aa54e23f9e...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aa54e23f9eced8844bc9ecec5a7f2430_NeikiAnalytics.exe

  • Size

    361KB

  • Sample

    240519-j5rx9aab5y

  • MD5

    aa54e23f9eced8844bc9ecec5a7f2430

  • SHA1

    ef43b13f97594cf9c30f41d36136e4fd573722e1

  • SHA256

    5b7bdec7facad3161dddfd2ab5660d398f28c3d5e587f3d7bdf2f2566a1080ce

  • SHA512

    4dfae56469e154f767f2ba39b3a28bdb02303cce4f9423e365a07a5cdd7cfb9dd601dc107428cc6b2af4057d9ecbde1d1aa112c5e8715ba50baabc7a2202ef19

  • SSDEEP

    6144:n3C9BRo7tvnJ9oH0IRgZvjD8296gnzeZhBuC:n3C9ytvngQj429nnzeZhBt

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      aa54e23f9eced8844bc9ecec5a7f2430_NeikiAnalytics.exe

    • Size

      361KB

    • MD5

      aa54e23f9eced8844bc9ecec5a7f2430

    • SHA1

      ef43b13f97594cf9c30f41d36136e4fd573722e1

    • SHA256

      5b7bdec7facad3161dddfd2ab5660d398f28c3d5e587f3d7bdf2f2566a1080ce

    • SHA512

      4dfae56469e154f767f2ba39b3a28bdb02303cce4f9423e365a07a5cdd7cfb9dd601dc107428cc6b2af4057d9ecbde1d1aa112c5e8715ba50baabc7a2202ef19

    • SSDEEP

      6144:n3C9BRo7tvnJ9oH0IRgZvjD8296gnzeZhBuC:n3C9ytvngQj429nnzeZhBt

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks