Overview

overview

10

Static

static

3

1069c3db6c...cs.exe

windows7-x64

10

1069c3db6c...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1069c3db6c04d035b6275b3b75afe5e0_NeikiAnalytics.exe

  • Size

    65KB

  • Sample

    240519-wrhhwaag23

  • MD5

    1069c3db6c04d035b6275b3b75afe5e0

  • SHA1

    f0853b8a2efdf932d4e136debb74a63ca965237e

  • SHA256

    5f966ade735c521960c37c9ca2823d02736503e384d92e915585990ca099001f

  • SHA512

    6dd9e8af0287c0b7584539ef39189352854a76b2620e97accbba61cd971f2e93a49eba0522900a7381b9ac9c94d3447c6a978382c3e521d00c4e34b1dddf2bec

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6Mu/ePS3AyXmP4:ymb3NkkiQ3mdBjFI46TQyXmP4

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      1069c3db6c04d035b6275b3b75afe5e0_NeikiAnalytics.exe

    • Size

      65KB

    • MD5

      1069c3db6c04d035b6275b3b75afe5e0

    • SHA1

      f0853b8a2efdf932d4e136debb74a63ca965237e

    • SHA256

      5f966ade735c521960c37c9ca2823d02736503e384d92e915585990ca099001f

    • SHA512

      6dd9e8af0287c0b7584539ef39189352854a76b2620e97accbba61cd971f2e93a49eba0522900a7381b9ac9c94d3447c6a978382c3e521d00c4e34b1dddf2bec

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6Mu/ePS3AyXmP4:ymb3NkkiQ3mdBjFI46TQyXmP4

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks