Overview

overview

10

Static

static

3

8779bd9139...cs.exe

windows7-x64

10

8779bd9139...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8779bd9139e4aa4019a843a629d8cc50_NeikiAnalytics.exe

  • Size

    277KB

  • Sample

    240520-ccyf1aeh2t

  • MD5

    8779bd9139e4aa4019a843a629d8cc50

  • SHA1

    2dd5a8af5523ce4e33061b1c8bd65fd71e656d02

  • SHA256

    889233a2a62da6db440827e9d51bad87e1a256ed2f991cdafc87bc06ef113af0

  • SHA512

    116824e4880af98e64eb1931431de1a7f8b068583df9f68cd58830d4cb7fb105df6f166fee025127d7bc656ea6dd6f65acef25b8ae15c5cb2d4be2ca51341405

  • SSDEEP

    6144:n3C9BRIG0asYFm71m8+GdkB9yMu7Vvemk:n3C9uYA71kSMuS

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      8779bd9139e4aa4019a843a629d8cc50_NeikiAnalytics.exe

    • Size

      277KB

    • MD5

      8779bd9139e4aa4019a843a629d8cc50

    • SHA1

      2dd5a8af5523ce4e33061b1c8bd65fd71e656d02

    • SHA256

      889233a2a62da6db440827e9d51bad87e1a256ed2f991cdafc87bc06ef113af0

    • SHA512

      116824e4880af98e64eb1931431de1a7f8b068583df9f68cd58830d4cb7fb105df6f166fee025127d7bc656ea6dd6f65acef25b8ae15c5cb2d4be2ca51341405

    • SSDEEP

      6144:n3C9BRIG0asYFm71m8+GdkB9yMu7Vvemk:n3C9uYA71kSMuS

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks