Overview

overview

10

Static

static

3

b5046a0e00...cs.exe

windows7-x64

10

b5046a0e00...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b5046a0e00a97218c248624cd6b18d00_NeikiAnalytics.exe

  • Size

    64KB

  • Sample

    240520-fspetada58

  • MD5

    b5046a0e00a97218c248624cd6b18d00

  • SHA1

    77b7e062965acbd3da8dd4288ca665c9e3481e9e

  • SHA256

    46245924ee91216c1e2f71c928f1f64ce8bef3b34804d22788de1cc4be20d96b

  • SHA512

    c9da62acdfd02bed7fbbacebf45799b71cc0aa6d288915d82176144ed8931ffa25997cf81bcfc2bbebc51300f0ac6c003afba7d03cf10203bcc0e9e226bdc8f8

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJULh12+:ymb3NkkiQ3mdBjFIFdJm5

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      b5046a0e00a97218c248624cd6b18d00_NeikiAnalytics.exe

    • Size

      64KB

    • MD5

      b5046a0e00a97218c248624cd6b18d00

    • SHA1

      77b7e062965acbd3da8dd4288ca665c9e3481e9e

    • SHA256

      46245924ee91216c1e2f71c928f1f64ce8bef3b34804d22788de1cc4be20d96b

    • SHA512

      c9da62acdfd02bed7fbbacebf45799b71cc0aa6d288915d82176144ed8931ffa25997cf81bcfc2bbebc51300f0ac6c003afba7d03cf10203bcc0e9e226bdc8f8

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJULh12+:ymb3NkkiQ3mdBjFIFdJm5

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks