Overview

overview

10

Static

static

3

cf8c775c71...cs.exe

windows7-x64

10

cf8c775c71...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cf8c775c71330833a17d8026ccec2a30_NeikiAnalytics.exe

  • Size

    224KB

  • Sample

    240520-h4y5hahd78

  • MD5

    cf8c775c71330833a17d8026ccec2a30

  • SHA1

    63d5bf17e5cacd3a4ef39c7b1ea84919bb11a401

  • SHA256

    d0a741fb253c21975be756eb5e65dcd000c8697b6c67faf0cbea8548ab0d6586

  • SHA512

    015e5f52f1c819fd8253b1d55895c0f4be730ea4b39b189745aaeccf94a2a2f5251dafabd13ff665f9e97d5cce93ed2a7a95cd4833d7e6eaddaedd8c3cf5830d

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFo73PYP1lri3KoSV31QNVrVc:n3C9BRo7MlrWKo+l0rVc

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      cf8c775c71330833a17d8026ccec2a30_NeikiAnalytics.exe

    • Size

      224KB

    • MD5

      cf8c775c71330833a17d8026ccec2a30

    • SHA1

      63d5bf17e5cacd3a4ef39c7b1ea84919bb11a401

    • SHA256

      d0a741fb253c21975be756eb5e65dcd000c8697b6c67faf0cbea8548ab0d6586

    • SHA512

      015e5f52f1c819fd8253b1d55895c0f4be730ea4b39b189745aaeccf94a2a2f5251dafabd13ff665f9e97d5cce93ed2a7a95cd4833d7e6eaddaedd8c3cf5830d

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFo73PYP1lri3KoSV31QNVrVc:n3C9BRo7MlrWKo+l0rVc

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks