Overview

overview

10

Static

static

3

fe3996ff14...cs.exe

windows7-x64

10

fe3996ff14...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fe3996ff14ae2f7b1085580f8b8b67c0_NeikiAnalytics.exe

  • Size

    480KB

  • Sample

    240519-vstf4ahc8s

  • MD5

    fe3996ff14ae2f7b1085580f8b8b67c0

  • SHA1

    db36053ded10148d7b77bfbc3a887523ec5e5b25

  • SHA256

    f741435619b07aa22d1d1522854fe88c573899b660fdfc4ff1a084eeb9e92118

  • SHA512

    7163b4cabddd49c30c84eb593248a5f22cd2c7bc30c5ffce25a02479d23a0769b284bbdee5b55386d56238edf35e7b853b77a75d0256f8e2bb6a63994af0e481

  • SSDEEP

    12288:n3C9uDVw6326pKZ9asZqoZHz+evcn0Meh2Fez6:Su326p0aroZt0s6

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      fe3996ff14ae2f7b1085580f8b8b67c0_NeikiAnalytics.exe

    • Size

      480KB

    • MD5

      fe3996ff14ae2f7b1085580f8b8b67c0

    • SHA1

      db36053ded10148d7b77bfbc3a887523ec5e5b25

    • SHA256

      f741435619b07aa22d1d1522854fe88c573899b660fdfc4ff1a084eeb9e92118

    • SHA512

      7163b4cabddd49c30c84eb593248a5f22cd2c7bc30c5ffce25a02479d23a0769b284bbdee5b55386d56238edf35e7b853b77a75d0256f8e2bb6a63994af0e481

    • SSDEEP

      12288:n3C9uDVw6326pKZ9asZqoZHz+evcn0Meh2Fez6:Su326p0aroZt0s6

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks