Overview

overview

10

Static

static

7

e77df3a1ec...cs.exe

windows7-x64

10

e77df3a1ec...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e77df3a1ec219be4760998ab69b25410_NeikiAnalytics.exe

  • Size

    366KB

  • Sample

    240519-s5989sdf7s

  • MD5

    e77df3a1ec219be4760998ab69b25410

  • SHA1

    7aa611623c76892f9ca8dd31e9e2dbdf392ce34e

  • SHA256

    eda0d072b664564c9f8bed56ba4dc12d3e9c03153245b345825851d13f0915c2

  • SHA512

    fbd03321374a9119a9f090f74f476d089ce1cd1c37c2be484dd431ae12fdfade14f368b95699ab7a84dead0c0a84e8da16129f918a531c3f84d416b4c2c00c64

  • SSDEEP

    6144:kcm4FmowdHoSphraHcpOFltH4tiAlSpgFZAzwdjcIlSpgFZZr3GSMM:y4wFHoS3eFplAlSpgFZAKjcIlSpgFZZ9

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      e77df3a1ec219be4760998ab69b25410_NeikiAnalytics.exe

    • Size

      366KB

    • MD5

      e77df3a1ec219be4760998ab69b25410

    • SHA1

      7aa611623c76892f9ca8dd31e9e2dbdf392ce34e

    • SHA256

      eda0d072b664564c9f8bed56ba4dc12d3e9c03153245b345825851d13f0915c2

    • SHA512

      fbd03321374a9119a9f090f74f476d089ce1cd1c37c2be484dd431ae12fdfade14f368b95699ab7a84dead0c0a84e8da16129f918a531c3f84d416b4c2c00c64

    • SSDEEP

      6144:kcm4FmowdHoSphraHcpOFltH4tiAlSpgFZAzwdjcIlSpgFZZr3GSMM:y4wFHoS3eFplAlSpgFZAKjcIlSpgFZZ9

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks