Overview

overview

10

Static

static

7

c6b54ed0a4...cs.exe

windows7-x64

10

c6b54ed0a4...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c6b54ed0a412ff1d53c8cc90ab346660_NeikiAnalytics.exe

  • Size

    80KB

  • Sample

    240520-hc612afh95

  • MD5

    c6b54ed0a412ff1d53c8cc90ab346660

  • SHA1

    9b6788e323d239e86e84dacc6475f7d3fac90bd7

  • SHA256

    19ba1e4afc27a28b2f37dee4ace395cc371ed26e9c646ad6ac94789388f7ddf7

  • SHA512

    536e21ec78f8373bff91b387c27c76cf047012a5f27ad7f64f345abdf4ce576863d0ac56c2d12da100cb8ed134180fa55e3f646911b8bbd4f730ce896fdf2183

  • SSDEEP

    1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6T7QS:zhOmTsF93UYfwC6GIoutiTU2HVS63QS

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      c6b54ed0a412ff1d53c8cc90ab346660_NeikiAnalytics.exe

    • Size

      80KB

    • MD5

      c6b54ed0a412ff1d53c8cc90ab346660

    • SHA1

      9b6788e323d239e86e84dacc6475f7d3fac90bd7

    • SHA256

      19ba1e4afc27a28b2f37dee4ace395cc371ed26e9c646ad6ac94789388f7ddf7

    • SHA512

      536e21ec78f8373bff91b387c27c76cf047012a5f27ad7f64f345abdf4ce576863d0ac56c2d12da100cb8ed134180fa55e3f646911b8bbd4f730ce896fdf2183

    • SSDEEP

      1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6T7QS:zhOmTsF93UYfwC6GIoutiTU2HVS63QS

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks