Overview

overview

10

Static

static

7

de026e4086...cs.exe

windows7-x64

10

de026e4086...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    de026e408641aa382458861d7d682100_NeikiAnalytics.exe

  • Size

    273KB

  • Sample

    240519-sgsdjsce7v

  • MD5

    de026e408641aa382458861d7d682100

  • SHA1

    e23453b651a0d917e0b8436cabf5c608249d61e8

  • SHA256

    ec1a857394f54bc01c476cd74b67a53c63887602a7e9b75a06e0eda3caa826f2

  • SHA512

    2ebbeecae8bca786de434263b8c223dd021d9e097e0924021f06486b5544ae91003bf31ca38431a22c13bb7914c70d5a81ad421436ae046998e0ccac0d11ef18

  • SSDEEP

    6144:Ycm4FmowdHoSgWrXF5lpKGYV0aTk/BO0XJm4UEPOshN/xdKnvP48bmQ:e4wFHoSgWjdpKGATTk/jYIOWN/KnnP/

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      de026e408641aa382458861d7d682100_NeikiAnalytics.exe

    • Size

      273KB

    • MD5

      de026e408641aa382458861d7d682100

    • SHA1

      e23453b651a0d917e0b8436cabf5c608249d61e8

    • SHA256

      ec1a857394f54bc01c476cd74b67a53c63887602a7e9b75a06e0eda3caa826f2

    • SHA512

      2ebbeecae8bca786de434263b8c223dd021d9e097e0924021f06486b5544ae91003bf31ca38431a22c13bb7914c70d5a81ad421436ae046998e0ccac0d11ef18

    • SSDEEP

      6144:Ycm4FmowdHoSgWrXF5lpKGYV0aTk/BO0XJm4UEPOshN/xdKnvP48bmQ:e4wFHoSgWjdpKGATTk/jYIOWN/KnnP/

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks