Overview

overview

10

Static

static

3

cb7dcf5c63...cs.exe

windows7-x64

10

cb7dcf5c63...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cb7dcf5c63d81e026187cc23866bd250_NeikiAnalytics.exe

  • Size

    59KB

  • Sample

    240519-qwby1aae68

  • MD5

    cb7dcf5c63d81e026187cc23866bd250

  • SHA1

    4d422a90573ed851ff514fd7a4cb4b94cf8fb68f

  • SHA256

    db7aed494ec2d180b23be7899d8ea5a6edc3e2e05c327cead93a8822c094cdd7

  • SHA512

    d60b122d0a9defb9acac7f020359a668890dd8de14c27fbd6c63dabcc6f635a474ce3b3483f31dcf1b837ba8bcccce437bc0cc18c93d4a27997af643a0ea6648

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsImsx:ymb3NkkiQ3mdBjFIsIFx

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      cb7dcf5c63d81e026187cc23866bd250_NeikiAnalytics.exe

    • Size

      59KB

    • MD5

      cb7dcf5c63d81e026187cc23866bd250

    • SHA1

      4d422a90573ed851ff514fd7a4cb4b94cf8fb68f

    • SHA256

      db7aed494ec2d180b23be7899d8ea5a6edc3e2e05c327cead93a8822c094cdd7

    • SHA512

      d60b122d0a9defb9acac7f020359a668890dd8de14c27fbd6c63dabcc6f635a474ce3b3483f31dcf1b837ba8bcccce437bc0cc18c93d4a27997af643a0ea6648

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsImsx:ymb3NkkiQ3mdBjFIsIFx

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks