Overview

overview

10

Static

static

3

d337b7e036...cs.exe

windows7-x64

10

d337b7e036...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d337b7e036a7071d1b2c8aff039f54d0_NeikiAnalytics.exe

  • Size

    372KB

  • Sample

    240519-rhr9habd6z

  • MD5

    d337b7e036a7071d1b2c8aff039f54d0

  • SHA1

    27cf33225a48b7d0987568c5625fe41c35082057

  • SHA256

    f4aed443666b24ed01fe22fc1b7dc8590082fc6e2e7f7335c58aeeeec35f9c31

  • SHA512

    a8858ef73d7d6a16365b47649bc36c1941b9807ceb79ba21cf83f3001aab0d06e38a7d196c4c44124ccb665bb3ab0476263de2f925c1c32c580b849204df2008

  • SSDEEP

    6144:n3C9BRIG0asYFm71mJl3/X8mak5gNv9rC8IwLaYNUvtTxTKMMP:n3C9uYA7i3/stR9HGYyvtTxTKMQ

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      d337b7e036a7071d1b2c8aff039f54d0_NeikiAnalytics.exe

    • Size

      372KB

    • MD5

      d337b7e036a7071d1b2c8aff039f54d0

    • SHA1

      27cf33225a48b7d0987568c5625fe41c35082057

    • SHA256

      f4aed443666b24ed01fe22fc1b7dc8590082fc6e2e7f7335c58aeeeec35f9c31

    • SHA512

      a8858ef73d7d6a16365b47649bc36c1941b9807ceb79ba21cf83f3001aab0d06e38a7d196c4c44124ccb665bb3ab0476263de2f925c1c32c580b849204df2008

    • SSDEEP

      6144:n3C9BRIG0asYFm71mJl3/X8mak5gNv9rC8IwLaYNUvtTxTKMMP:n3C9uYA7i3/stR9HGYyvtTxTKMQ

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks