Overview

overview

10

Static

static

7

9294fcc8ed...cs.exe

windows7-x64

10

9294fcc8ed...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9294fcc8edf73505f18f0c4f5c959c30_NeikiAnalytics.exe

  • Size

    377KB

  • Sample

    240520-c4w29agd8w

  • MD5

    9294fcc8edf73505f18f0c4f5c959c30

  • SHA1

    33881a464750d25c231619804e6a957d160bfe7c

  • SHA256

    f258b36f01cc53a0b4b274e3986179b2f19686abb87148e327d06d537d358916

  • SHA512

    985fab7176b341e514cdc5204fe0a04a7f6edf2fb2fbb4f55ca9a6cf90c0525d553208aab30c56d9abc7f14f416bc59343231f1eb5b6dde7e2152fb21c8d5c57

  • SSDEEP

    6144:9cm4FmowdHoS4WEkMawdHoSbdwqGw+tw+ttidCyU:/4wFHoS4WEkMTHoSbG++tw+tYYyU

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      9294fcc8edf73505f18f0c4f5c959c30_NeikiAnalytics.exe

    • Size

      377KB

    • MD5

      9294fcc8edf73505f18f0c4f5c959c30

    • SHA1

      33881a464750d25c231619804e6a957d160bfe7c

    • SHA256

      f258b36f01cc53a0b4b274e3986179b2f19686abb87148e327d06d537d358916

    • SHA512

      985fab7176b341e514cdc5204fe0a04a7f6edf2fb2fbb4f55ca9a6cf90c0525d553208aab30c56d9abc7f14f416bc59343231f1eb5b6dde7e2152fb21c8d5c57

    • SSDEEP

      6144:9cm4FmowdHoS4WEkMawdHoSbdwqGw+tw+ttidCyU:/4wFHoS4WEkMTHoSbG++tw+tYYyU

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks