Overview

overview

10

Static

static

3

a0f3b32e12...cs.exe

windows7-x64

10

a0f3b32e12...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a0f3b32e128ec7a107a86ff544929ad0_NeikiAnalytics.exe

  • Size

    66KB

  • Sample

    240520-d2216aad2z

  • MD5

    a0f3b32e128ec7a107a86ff544929ad0

  • SHA1

    efac7d94926431c491b443a5da5548afe1e7103c

  • SHA256

    8cb19b216ea0dd4adb88d569212bde5a4db058e2b5856ae2fd78c774934aab1a

  • SHA512

    5346b794f438393f728aff3f7db2506e0135600322139f07eb14155d656b9032861fdc68fc4e520acde6dd6bb07ca4098c9fbae1c9ceabccc3374c6b5921c3b2

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZu:ymb3NkkiQ3mdBjF0yUmY

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      a0f3b32e128ec7a107a86ff544929ad0_NeikiAnalytics.exe

    • Size

      66KB

    • MD5

      a0f3b32e128ec7a107a86ff544929ad0

    • SHA1

      efac7d94926431c491b443a5da5548afe1e7103c

    • SHA256

      8cb19b216ea0dd4adb88d569212bde5a4db058e2b5856ae2fd78c774934aab1a

    • SHA512

      5346b794f438393f728aff3f7db2506e0135600322139f07eb14155d656b9032861fdc68fc4e520acde6dd6bb07ca4098c9fbae1c9ceabccc3374c6b5921c3b2

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZu:ymb3NkkiQ3mdBjF0yUmY

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks