Overview

overview

10

Static

static

3

950d602268...cs.exe

windows7-x64

10

950d602268...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    950d60226895a39b6410d2682b6a3240_NeikiAnalytics.exe

  • Size

    95KB

  • Sample

    240520-c8y3eagg3z

  • MD5

    950d60226895a39b6410d2682b6a3240

  • SHA1

    21c888926ce4f22e5a5f1457c4ca7a53eab0305d

  • SHA256

    d49a734c6c2c0c59de327213dec310a453fe82405f682ef2d09d7357fa582f2a

  • SHA512

    eef65bee7bee4a9f671e6668478860ed319e8fd5e35772b114252f2bbd2a98c53b11d2d41e1781bc07d29fa5f7f12c97102190b2521632a602bccb1719c8e76f

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxEPOfPrAK:ymb3NkkiQ3mdBjFo73PYP1lri3KuOnrt

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      950d60226895a39b6410d2682b6a3240_NeikiAnalytics.exe

    • Size

      95KB

    • MD5

      950d60226895a39b6410d2682b6a3240

    • SHA1

      21c888926ce4f22e5a5f1457c4ca7a53eab0305d

    • SHA256

      d49a734c6c2c0c59de327213dec310a453fe82405f682ef2d09d7357fa582f2a

    • SHA512

      eef65bee7bee4a9f671e6668478860ed319e8fd5e35772b114252f2bbd2a98c53b11d2d41e1781bc07d29fa5f7f12c97102190b2521632a602bccb1719c8e76f

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxEPOfPrAK:ymb3NkkiQ3mdBjFo73PYP1lri3KuOnrt

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks