Overview

overview

10

Static

static

3

1f1bf27820...cs.exe

windows7-x64

10

1f1bf27820...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1f1bf278207e145dac5d03b1c89651e0_NeikiAnalytics.exe

  • Size

    179KB

  • Sample

    240519-xtsmasdc7t

  • MD5

    1f1bf278207e145dac5d03b1c89651e0

  • SHA1

    fd5b55be1bb1e777d6ed2b3a901a9a887b362e70

  • SHA256

    ce35691196646771998ae93aae2f0b1e435c31c03f5cc7d43100d2f8856d5df9

  • SHA512

    ffdbfba7f4e121c280f4ed0643c6a91fda3ecc58f2b6331ca014adeade96e0a0fdc3a997477d6b2236229a6fd814674429ab437c82809abe811b822e33d6413e

  • SSDEEP

    3072:AhOmTsF93UYfwC6GIoutQ6M/Fpi8rY9AABa1YRMxgRP5ZXuxF:Acm4FmowdHoSCddWhR/Z+H

Score
10/10
blackmoonbankertrojan

Malware Config

Targets

    • Target

      1f1bf278207e145dac5d03b1c89651e0_NeikiAnalytics.exe

    • Size

      179KB

    • MD5

      1f1bf278207e145dac5d03b1c89651e0

    • SHA1

      fd5b55be1bb1e777d6ed2b3a901a9a887b362e70

    • SHA256

      ce35691196646771998ae93aae2f0b1e435c31c03f5cc7d43100d2f8856d5df9

    • SHA512

      ffdbfba7f4e121c280f4ed0643c6a91fda3ecc58f2b6331ca014adeade96e0a0fdc3a997477d6b2236229a6fd814674429ab437c82809abe811b822e33d6413e

    • SSDEEP

      3072:AhOmTsF93UYfwC6GIoutQ6M/Fpi8rY9AABa1YRMxgRP5ZXuxF:Acm4FmowdHoSCddWhR/Z+H

    Score
    10/10
    blackmoonbankertrojan

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks