Overview

overview

10

Static

static

7

c5fe68990d...cs.exe

windows7-x64

10

c5fe68990d...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c5fe68990d8739917f0cdf77e0741380_NeikiAnalytics.exe

  • Size

    160KB

  • Sample

    240519-qd62esab9s

  • MD5

    c5fe68990d8739917f0cdf77e0741380

  • SHA1

    4ae34e8fe637b3ed418a3132260ab47ef9f989df

  • SHA256

    b020890853508fcff4df36481b71baaea6da7a057f63275f7296181c8e54db6c

  • SHA512

    f7c5675b383cfe0326031df38cd1ef47a184226c918c2e2b58d9034669cd356706f61ed4a5269fbc7ead905b563a24c6bcf2d487e38c1e13feb222a13f53a41c

  • SSDEEP

    3072:xhOmTsF93UYfwC6GIout0fmCiiiXAQ5lpBoGYwNNhu0CzhKPDNuBSl:xcm4FmowdHoSgWrXF5lpKGYV0wh6D9l

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      c5fe68990d8739917f0cdf77e0741380_NeikiAnalytics.exe

    • Size

      160KB

    • MD5

      c5fe68990d8739917f0cdf77e0741380

    • SHA1

      4ae34e8fe637b3ed418a3132260ab47ef9f989df

    • SHA256

      b020890853508fcff4df36481b71baaea6da7a057f63275f7296181c8e54db6c

    • SHA512

      f7c5675b383cfe0326031df38cd1ef47a184226c918c2e2b58d9034669cd356706f61ed4a5269fbc7ead905b563a24c6bcf2d487e38c1e13feb222a13f53a41c

    • SSDEEP

      3072:xhOmTsF93UYfwC6GIout0fmCiiiXAQ5lpBoGYwNNhu0CzhKPDNuBSl:xcm4FmowdHoSgWrXF5lpKGYV0wh6D9l

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks