Overview

overview

10

Static

static

7

c10bb00fb2...cs.exe

windows7-x64

10

c10bb00fb2...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c10bb00fb2b028041c2041073908a260_NeikiAnalytics.exe

  • Size

    273KB

  • Sample

    240519-pzenmahf32

  • MD5

    c10bb00fb2b028041c2041073908a260

  • SHA1

    ed8194b03d0994959ea866b0227b3907779d7ed7

  • SHA256

    462239bd9233d2faba50c0f11fb4291fabb06b5c0acfef80eda7c42d7f2ed706

  • SHA512

    df345edd019c72dd809ba7e328bdaa449a05a73a83ab8fa1694ffcb2441b91f5e79481ac4fa64872d848c29b09a5aa4e9bf6c0b231c128e739dcd7b8b0416fde

  • SSDEEP

    6144:Ycm4FmowdHoSgWrXF5lpKGYV0aTk/BO0XJm4UEPOshN/xdKnvP48bm1M:e4wFHoSgWjdpKGATTk/jYIOWN/KnnPf

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      c10bb00fb2b028041c2041073908a260_NeikiAnalytics.exe

    • Size

      273KB

    • MD5

      c10bb00fb2b028041c2041073908a260

    • SHA1

      ed8194b03d0994959ea866b0227b3907779d7ed7

    • SHA256

      462239bd9233d2faba50c0f11fb4291fabb06b5c0acfef80eda7c42d7f2ed706

    • SHA512

      df345edd019c72dd809ba7e328bdaa449a05a73a83ab8fa1694ffcb2441b91f5e79481ac4fa64872d848c29b09a5aa4e9bf6c0b231c128e739dcd7b8b0416fde

    • SSDEEP

      6144:Ycm4FmowdHoSgWrXF5lpKGYV0aTk/BO0XJm4UEPOshN/xdKnvP48bm1M:e4wFHoSgWjdpKGATTk/jYIOWN/KnnPf

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks