Overview

overview

10

Static

static

7

a79b23cb81...cs.exe

windows7-x64

10

a79b23cb81...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a79b23cb810908a8f499421e19a22cb0_NeikiAnalytics.exe

  • Size

    363KB

  • Sample

    240520-eme4hsag79

  • MD5

    a79b23cb810908a8f499421e19a22cb0

  • SHA1

    0962cf27925bf727c835933f2d35c49e0760ec84

  • SHA256

    7bc9346d800ce1b1bcfde5fe104a3badd2fa9d4e196f6dc47646f4afed0f5a70

  • SHA512

    eec7eed501a52a983db3f8585f63d11dd24631b27c683d0ab850423a3b39643383ea0e1c8b8f40a82d0b38fbb1d76abf1e20c064a32ada0029288dd8be7e00e5

  • SSDEEP

    6144:9cm4FmowdHoSdSyEAxyx/ZrTTr4qIMgE8F:/4wFHoSQuxy3rTXIM18F

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      a79b23cb810908a8f499421e19a22cb0_NeikiAnalytics.exe

    • Size

      363KB

    • MD5

      a79b23cb810908a8f499421e19a22cb0

    • SHA1

      0962cf27925bf727c835933f2d35c49e0760ec84

    • SHA256

      7bc9346d800ce1b1bcfde5fe104a3badd2fa9d4e196f6dc47646f4afed0f5a70

    • SHA512

      eec7eed501a52a983db3f8585f63d11dd24631b27c683d0ab850423a3b39643383ea0e1c8b8f40a82d0b38fbb1d76abf1e20c064a32ada0029288dd8be7e00e5

    • SSDEEP

      6144:9cm4FmowdHoSdSyEAxyx/ZrTTr4qIMgE8F:/4wFHoSQuxy3rTXIM18F

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks