Overview

overview

10

Static

static

3

b9bbe85413...cs.exe

windows7-x64

10

b9bbe85413...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b9bbe85413287cb6d1e2e020bd81ea50_NeikiAnalytics.exe

  • Size

    487KB

  • Sample

    240520-f8c2qadg37

  • MD5

    b9bbe85413287cb6d1e2e020bd81ea50

  • SHA1

    a59abfde525ada15999edb3cd7bde72a3ca8cf7c

  • SHA256

    e4df639d014862674de44cec137d91bc785bdc061d5c2a7dcd3ce8c82da6e833

  • SHA512

    8dbf912ce5125712bb0c712a0a543ba0d9f01bef147cc5156bc032bafea50c9a0d0a3198a49a80633e9e1bb574ceca26f9bbc746674cc7c89c0c7f89898d2bb5

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwu1b26X1wjdgyPPB1:q7Tc2NYHUrAwqzQ7PPD

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      b9bbe85413287cb6d1e2e020bd81ea50_NeikiAnalytics.exe

    • Size

      487KB

    • MD5

      b9bbe85413287cb6d1e2e020bd81ea50

    • SHA1

      a59abfde525ada15999edb3cd7bde72a3ca8cf7c

    • SHA256

      e4df639d014862674de44cec137d91bc785bdc061d5c2a7dcd3ce8c82da6e833

    • SHA512

      8dbf912ce5125712bb0c712a0a543ba0d9f01bef147cc5156bc032bafea50c9a0d0a3198a49a80633e9e1bb574ceca26f9bbc746674cc7c89c0c7f89898d2bb5

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwu1b26X1wjdgyPPB1:q7Tc2NYHUrAwqzQ7PPD

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks