Overview

overview

10

Static

static

7

f01e42868e...cs.exe

windows7-x64

10

f01e42868e...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f01e42868e6bd6f3fedb71301d4549b0_NeikiAnalytics.exe

  • Size

    361KB

  • Sample

    240519-tsbqlsfb3x

  • MD5

    f01e42868e6bd6f3fedb71301d4549b0

  • SHA1

    6711be1e6b31705c15feba3ea282540f7c4d66c0

  • SHA256

    d6891d9eec294533cb7260f2afbad73485b43aa2b6f4bb639f1363f6289592e0

  • SHA512

    016a2ae1d5b0692a6fa043d35f03eed28d273a1f69e389b647e2b58ab1d6a63f153227cbd298f825d07a2d0cf007af47c37b74ade45f8a60870e715527e97358

  • SSDEEP

    6144:Lcm4FmowdHoSHt251UriZFwu1b26X1wjhtSizjR:R4wFHoSHYHUrAwqzcT

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      f01e42868e6bd6f3fedb71301d4549b0_NeikiAnalytics.exe

    • Size

      361KB

    • MD5

      f01e42868e6bd6f3fedb71301d4549b0

    • SHA1

      6711be1e6b31705c15feba3ea282540f7c4d66c0

    • SHA256

      d6891d9eec294533cb7260f2afbad73485b43aa2b6f4bb639f1363f6289592e0

    • SHA512

      016a2ae1d5b0692a6fa043d35f03eed28d273a1f69e389b647e2b58ab1d6a63f153227cbd298f825d07a2d0cf007af47c37b74ade45f8a60870e715527e97358

    • SSDEEP

      6144:Lcm4FmowdHoSHt251UriZFwu1b26X1wjhtSizjR:R4wFHoSHYHUrAwqzcT

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks