Overview

overview

10

Static

static

3

668c716ee0...cs.exe

windows7-x64

10

668c716ee0...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    668c716ee0b7aacde10c15a87e28a830_NeikiAnalytics.exe

  • Size

    67KB

  • Sample

    240520-ack5kaaa92

  • MD5

    668c716ee0b7aacde10c15a87e28a830

  • SHA1

    d896a2eae9ff4bfc8de86bf87bbd4c4c1fb481ac

  • SHA256

    04076b629cf599646aa48c9f4ec2af403369e66e902891a9e0b2dc3960dae3b9

  • SHA512

    70b60dde2518372baa4c54add73342f1a4b52af3a14645facdb02253678d52c6af4fa928284341ae1852fd82d5dd2c1af340f9ed6725f3fd6c5a6f87f66df6d0

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIVZ:ymb3NkkiQ3mdBjFIFdJ8bf

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      668c716ee0b7aacde10c15a87e28a830_NeikiAnalytics.exe

    • Size

      67KB

    • MD5

      668c716ee0b7aacde10c15a87e28a830

    • SHA1

      d896a2eae9ff4bfc8de86bf87bbd4c4c1fb481ac

    • SHA256

      04076b629cf599646aa48c9f4ec2af403369e66e902891a9e0b2dc3960dae3b9

    • SHA512

      70b60dde2518372baa4c54add73342f1a4b52af3a14645facdb02253678d52c6af4fa928284341ae1852fd82d5dd2c1af340f9ed6725f3fd6c5a6f87f66df6d0

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIVZ:ymb3NkkiQ3mdBjFIFdJ8bf

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks