Overview

overview

10

Static

static

3

c3819f7639...cs.exe

windows7-x64

10

c3819f7639...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c3819f76395d45e934e63a05c34091e0_NeikiAnalytics.exe

  • Size

    66KB

  • Sample

    240519-p62fzahh9s

  • MD5

    c3819f76395d45e934e63a05c34091e0

  • SHA1

    492fb0830307b357be41debd32702be90e4ab312

  • SHA256

    a6bc59fca0e10eb18065c22c0bd5511f04b7e050cb0f11988035ba476d9828c8

  • SHA512

    cf4de1ce7539d8505d26a1a2618b085976ca55643778d98f53e397e070bfd938c8688e989a1f8aaa208684b6b7a8db91ba9a59304652e1975f1253840fe5d481

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZp1:ymb3NkkiQ3mdBjF0yUmP1

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      c3819f76395d45e934e63a05c34091e0_NeikiAnalytics.exe

    • Size

      66KB

    • MD5

      c3819f76395d45e934e63a05c34091e0

    • SHA1

      492fb0830307b357be41debd32702be90e4ab312

    • SHA256

      a6bc59fca0e10eb18065c22c0bd5511f04b7e050cb0f11988035ba476d9828c8

    • SHA512

      cf4de1ce7539d8505d26a1a2618b085976ca55643778d98f53e397e070bfd938c8688e989a1f8aaa208684b6b7a8db91ba9a59304652e1975f1253840fe5d481

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZp1:ymb3NkkiQ3mdBjF0yUmP1

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks