Overview

overview

10

Static

static

3

3a3439c616...cs.exe

windows7-x64

10

3a3439c616...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3a3439c616c04fdccf127637c7f29030_NeikiAnalytics.exe

  • Size

    275KB

  • Sample

    240519-zzwl9aab6w

  • MD5

    3a3439c616c04fdccf127637c7f29030

  • SHA1

    60fa287307c8d838d4ffabf4c2ec8a6e763d324a

  • SHA256

    47f0f5e9af99295877d25360f356084d903ec6ef4567b03d58d725891491639e

  • SHA512

    45a2a5819ed9c326fa184c45fc28771aca36b00e718307ed3d4c3facfac9a2abd8e062780fe1b09aa066b9aa0415381f2e4d8e8665f18e58d144ecfbb5d3f6d0

  • SSDEEP

    3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFY:8cm7ImGddXmNt251UriZFY

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      3a3439c616c04fdccf127637c7f29030_NeikiAnalytics.exe

    • Size

      275KB

    • MD5

      3a3439c616c04fdccf127637c7f29030

    • SHA1

      60fa287307c8d838d4ffabf4c2ec8a6e763d324a

    • SHA256

      47f0f5e9af99295877d25360f356084d903ec6ef4567b03d58d725891491639e

    • SHA512

      45a2a5819ed9c326fa184c45fc28771aca36b00e718307ed3d4c3facfac9a2abd8e062780fe1b09aa066b9aa0415381f2e4d8e8665f18e58d144ecfbb5d3f6d0

    • SSDEEP

      3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFY:8cm7ImGddXmNt251UriZFY

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks