Overview

overview

10

Static

static

3

875d8c758a...cs.exe

windows7-x64

10

875d8c758a...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    875d8c758a8b51a86d16c1161f0f3330_NeikiAnalytics.exe

  • Size

    74KB

  • Sample

    240520-ccph4aeg8y

  • MD5

    875d8c758a8b51a86d16c1161f0f3330

  • SHA1

    d5a1cfdc70f86207532004f6fc69c870a480a1a8

  • SHA256

    27d1256126312d4c6a560cc0f84331ecc870a3bfcad188dad1bee4811d3fadab

  • SHA512

    344cad5f8ca96c4e49679757ebe10b5f0fa18dfff2e11efd0382c10ca85df5046d419a60cf8e37a3b0c73177d697f8c65a4a18e4fd6e02df581074ed5b323932

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSsD+cGUFzJj:ymb3NkkiQ3mdBjFIwsDhbNh

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      875d8c758a8b51a86d16c1161f0f3330_NeikiAnalytics.exe

    • Size

      74KB

    • MD5

      875d8c758a8b51a86d16c1161f0f3330

    • SHA1

      d5a1cfdc70f86207532004f6fc69c870a480a1a8

    • SHA256

      27d1256126312d4c6a560cc0f84331ecc870a3bfcad188dad1bee4811d3fadab

    • SHA512

      344cad5f8ca96c4e49679757ebe10b5f0fa18dfff2e11efd0382c10ca85df5046d419a60cf8e37a3b0c73177d697f8c65a4a18e4fd6e02df581074ed5b323932

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSsD+cGUFzJj:ymb3NkkiQ3mdBjFIwsDhbNh

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks