Overview

overview

10

Static

static

3

aa7d31d925...cs.exe

windows7-x64

10

aa7d31d925...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aa7d31d9257c14d8ee133014f4e4f950_NeikiAnalytics.exe

  • Size

    275KB

  • Sample

    240520-ew2c4sbh9t

  • MD5

    aa7d31d9257c14d8ee133014f4e4f950

  • SHA1

    003d44b87fe0553af83ade1c1969f39e72b6a19a

  • SHA256

    3365078b6169eee2d1fd9d01a5dec4313607c27e87528ef925e4d309f2e5865b

  • SHA512

    34af5a7130e3b8e95ddecebcc1d3d1d952f53b24722cbebc346b5695762c773760d332b3d41f7666200af5a0abff74ae7c4c8ea813607eb9d80e5d88f6eef0bc

  • SSDEEP

    3072:8hOm2sI93UufdC67cimD5t251UrRE9TTF6:8cm7ImGddXmNt251UriZF6

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      aa7d31d9257c14d8ee133014f4e4f950_NeikiAnalytics.exe

    • Size

      275KB

    • MD5

      aa7d31d9257c14d8ee133014f4e4f950

    • SHA1

      003d44b87fe0553af83ade1c1969f39e72b6a19a

    • SHA256

      3365078b6169eee2d1fd9d01a5dec4313607c27e87528ef925e4d309f2e5865b

    • SHA512

      34af5a7130e3b8e95ddecebcc1d3d1d952f53b24722cbebc346b5695762c773760d332b3d41f7666200af5a0abff74ae7c4c8ea813607eb9d80e5d88f6eef0bc

    • SSDEEP

      3072:8hOm2sI93UufdC67cimD5t251UrRE9TTF6:8cm7ImGddXmNt251UriZF6

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks