Overview

overview

10

Static

static

7

d37c766192...cs.exe

windows7-x64

10

d37c766192...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d37c7661921408953808375eef828720_NeikiAnalytics.exe

  • Size

    339KB

  • Sample

    240519-rjs77abd9v

  • MD5

    d37c7661921408953808375eef828720

  • SHA1

    ace5372cc95fe49a1c60c474a7822e56290b4395

  • SHA256

    4eaa6bbf6358c5963d51e9143ebd90f0644bb57271bc12d095f1824038f74935

  • SHA512

    e680d30341cd3183650f7c3a3ed9b65fd8d46ed25d6bfa28a059c0f1ca8b0e35ec08071ffecc53762cac360f2a12958c15d99dd9b9a2721419b38d51e6cef2ec

  • SSDEEP

    3072:9hOmTsF93UYfwC6GIoutz5yLpcgDE4JBHNgu5ex1B2OkEv0KvmhNip:9cm4FmowdHoS4BtguSPKyHp

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      d37c7661921408953808375eef828720_NeikiAnalytics.exe

    • Size

      339KB

    • MD5

      d37c7661921408953808375eef828720

    • SHA1

      ace5372cc95fe49a1c60c474a7822e56290b4395

    • SHA256

      4eaa6bbf6358c5963d51e9143ebd90f0644bb57271bc12d095f1824038f74935

    • SHA512

      e680d30341cd3183650f7c3a3ed9b65fd8d46ed25d6bfa28a059c0f1ca8b0e35ec08071ffecc53762cac360f2a12958c15d99dd9b9a2721419b38d51e6cef2ec

    • SSDEEP

      3072:9hOmTsF93UYfwC6GIoutz5yLpcgDE4JBHNgu5ex1B2OkEv0KvmhNip:9cm4FmowdHoS4BtguSPKyHp

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks