Overview

overview

10

Static

static

3

1410c2fdc8...cs.exe

windows7-x64

10

1410c2fdc8...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1410c2fdc84c98d088749aae084d4910_NeikiAnalytics.exe

  • Size

    335KB

  • Sample

    240519-w1zhrabe5x

  • MD5

    1410c2fdc84c98d088749aae084d4910

  • SHA1

    c3a1f4d4eb81de94794ae70c5924b8db5967c077

  • SHA256

    a0d07adcb10767d63f9933123108f11a5570683de0ddcad945749eacabba1d6c

  • SHA512

    b929ca9ef129171ee428af160a0611c0ff404a9cfc0866441222d9c601a5126948cb531ea9763345ce0fcf7228919e7ecfc6f89168cb01f4e8af77deabfaab75

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFo73tvn+Yp99zm+/KZBHqnuOeHzmB600TUA6Z7zupc+Bu:n3C9BRo7tvnJ99T/KZEuOod00TG+Bu

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      1410c2fdc84c98d088749aae084d4910_NeikiAnalytics.exe

    • Size

      335KB

    • MD5

      1410c2fdc84c98d088749aae084d4910

    • SHA1

      c3a1f4d4eb81de94794ae70c5924b8db5967c077

    • SHA256

      a0d07adcb10767d63f9933123108f11a5570683de0ddcad945749eacabba1d6c

    • SHA512

      b929ca9ef129171ee428af160a0611c0ff404a9cfc0866441222d9c601a5126948cb531ea9763345ce0fcf7228919e7ecfc6f89168cb01f4e8af77deabfaab75

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFo73tvn+Yp99zm+/KZBHqnuOeHzmB600TUA6Z7zupc+Bu:n3C9BRo7tvnJ99T/KZEuOod00TG+Bu

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks