Overview

overview

10

Static

static

3

da5699edeb...cs.exe

windows7-x64

10

da5699edeb...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    da5699edeb93f7e8aaf571b69eb53400_NeikiAnalytics.exe

  • Size

    966KB

  • Sample

    240519-r43mcsca58

  • MD5

    da5699edeb93f7e8aaf571b69eb53400

  • SHA1

    af6962ee16b5b76154e3768a97a96de049eb5be8

  • SHA256

    5e50836ba5b9b2a6c9ff6face60107c5d419f433d0473742fd023ab233066806

  • SHA512

    814b37604b55481c39a21b6b138b111007b488eeba6c8aedd93834e604488147b793b9dcefa7f9a8a42f7d8cd6cdcea97efdf533b5397bc038a628e17c22ea74

  • SSDEEP

    12288:n3C9yMo+S0L9xRnoq7H9xqYL04iVypNKvzcMwdBS3b3aoqYveXVadBlHD+CURPO0:SgD4bhoqLDqYLagB6Wj1+CysF

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      da5699edeb93f7e8aaf571b69eb53400_NeikiAnalytics.exe

    • Size

      966KB

    • MD5

      da5699edeb93f7e8aaf571b69eb53400

    • SHA1

      af6962ee16b5b76154e3768a97a96de049eb5be8

    • SHA256

      5e50836ba5b9b2a6c9ff6face60107c5d419f433d0473742fd023ab233066806

    • SHA512

      814b37604b55481c39a21b6b138b111007b488eeba6c8aedd93834e604488147b793b9dcefa7f9a8a42f7d8cd6cdcea97efdf533b5397bc038a628e17c22ea74

    • SSDEEP

      12288:n3C9yMo+S0L9xRnoq7H9xqYL04iVypNKvzcMwdBS3b3aoqYveXVadBlHD+CURPO0:SgD4bhoqLDqYLagB6Wj1+CysF

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks