Overview

overview

10

Static

static

3

148223f808...cs.exe

windows7-x64

10

148223f808...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    148223f808abdea8245e486204abaa70_NeikiAnalytics.exe

  • Size

    370KB

  • Sample

    240519-w2v7qabf2s

  • MD5

    148223f808abdea8245e486204abaa70

  • SHA1

    bc102b829d7fa1ffdf1cb8e2f60ac5e756ef1935

  • SHA256

    9a6dd4ac3e9ad5a5d058fc7d6bd120b0ab9c5a74cd5245c97b6f86904d5dbf99

  • SHA512

    bffc4464a3a02138b3b3114c25be9b5c1abfb8391ea8570c5bcbe48fbf997eb07759237181407880826d22d9a99fc343dbded6a1b968b68701632c63a5e59d96

  • SSDEEP

    6144:n3C9BRIG0asYFm71mJl3/X8mak5gNv9rC8IwLaYNUvtTxTKMM4:n3C9uYA7i3/stR9HGYyvtTxTKMt

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      148223f808abdea8245e486204abaa70_NeikiAnalytics.exe

    • Size

      370KB

    • MD5

      148223f808abdea8245e486204abaa70

    • SHA1

      bc102b829d7fa1ffdf1cb8e2f60ac5e756ef1935

    • SHA256

      9a6dd4ac3e9ad5a5d058fc7d6bd120b0ab9c5a74cd5245c97b6f86904d5dbf99

    • SHA512

      bffc4464a3a02138b3b3114c25be9b5c1abfb8391ea8570c5bcbe48fbf997eb07759237181407880826d22d9a99fc343dbded6a1b968b68701632c63a5e59d96

    • SSDEEP

      6144:n3C9BRIG0asYFm71mJl3/X8mak5gNv9rC8IwLaYNUvtTxTKMM4:n3C9uYA7i3/stR9HGYyvtTxTKMt

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks