Overview

overview

10

Static

static

7

9989df60e9...cs.exe

windows7-x64

10

9989df60e9...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9989df60e9c284a2dee3f33b61854f50_NeikiAnalytics.exe

  • Size

    155KB

  • Sample

    240520-dj3vqsgg22

  • MD5

    9989df60e9c284a2dee3f33b61854f50

  • SHA1

    2544c7479f882e10c5bd0503a6a49999a6177a00

  • SHA256

    f888853cca616b54404f515e15b87d3059f37f2030a24cf9abe9963cebe60eef

  • SHA512

    2c7865f82208c11525f5e756b805eca8512a2183f2580c6327d64fff5e3c9402d6084ae11b62ec635cc123836d403e589ee801e89da671c625949a9caa7ad4c5

  • SSDEEP

    3072:khOmTsF93UYfwC6GIoutpYcvrqrE66kropO6BWlPFH4oGPwJwJEj:kcm4FmowdHoSphraHcpOFltH4oGPjJEj

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      9989df60e9c284a2dee3f33b61854f50_NeikiAnalytics.exe

    • Size

      155KB

    • MD5

      9989df60e9c284a2dee3f33b61854f50

    • SHA1

      2544c7479f882e10c5bd0503a6a49999a6177a00

    • SHA256

      f888853cca616b54404f515e15b87d3059f37f2030a24cf9abe9963cebe60eef

    • SHA512

      2c7865f82208c11525f5e756b805eca8512a2183f2580c6327d64fff5e3c9402d6084ae11b62ec635cc123836d403e589ee801e89da671c625949a9caa7ad4c5

    • SSDEEP

      3072:khOmTsF93UYfwC6GIoutpYcvrqrE66kropO6BWlPFH4oGPwJwJEj:kcm4FmowdHoSphraHcpOFltH4oGPjJEj

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks