Overview

overview

10

Static

static

3

cc0e352568...cs.exe

windows7-x64

10

cc0e352568...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cc0e352568a0bf2554d84396dcd61470_NeikiAnalytics.exe

  • Size

    141KB

  • Sample

    240519-qxz28aaf27

  • MD5

    cc0e352568a0bf2554d84396dcd61470

  • SHA1

    02b6e926c28e996f059b0994fbe029aed2669ba2

  • SHA256

    803bd738b230b919a599fa8cd563bb55f96bb051378f43cbb4593bb3f46979b9

  • SHA512

    9c98639f22fc3af2e902c6c0ef98adbd290716287c80af8e11cc42e121be8ddb8f8aa20953245499c96f6edb6f5f03a659be6f93aab21d409fad6a012f04fd98

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFomR7UsyJC+n0Gsgyek1I:n3C9BRomRph+0GsgyeYI

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      cc0e352568a0bf2554d84396dcd61470_NeikiAnalytics.exe

    • Size

      141KB

    • MD5

      cc0e352568a0bf2554d84396dcd61470

    • SHA1

      02b6e926c28e996f059b0994fbe029aed2669ba2

    • SHA256

      803bd738b230b919a599fa8cd563bb55f96bb051378f43cbb4593bb3f46979b9

    • SHA512

      9c98639f22fc3af2e902c6c0ef98adbd290716287c80af8e11cc42e121be8ddb8f8aa20953245499c96f6edb6f5f03a659be6f93aab21d409fad6a012f04fd98

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFomR7UsyJC+n0Gsgyek1I:n3C9BRomRph+0GsgyeYI

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks