Overview

overview

10

Static

static

3

cdbec37534...cs.exe

windows7-x64

10

cdbec37534...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    cdbec3753467486a7fdbb6b24dfbee30_NeikiAnalytics.exe

  • Size

    61KB

  • Sample

    240520-hzmkxahf8y

  • MD5

    cdbec3753467486a7fdbb6b24dfbee30

  • SHA1

    1cce7764fa2e06f53a913f5ffcde459359d9bc12

  • SHA256

    db4bac3d9b169ae4a272700aa57f4ef1bd50ddfa481b6c5eb15eebb0871dc1a3

  • SHA512

    0f5a991a63eeb6bf96abded5e4c29cdd4461701c0cc76eb553a8481e2a204f481101d19d7572d275cd8b63fa280e6e0dfc9179ff4762a9c7d00b5981ed7b4d3e

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvAEaFJLL:ymb3NkkiQ3mdBjFIvAvL

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      cdbec3753467486a7fdbb6b24dfbee30_NeikiAnalytics.exe

    • Size

      61KB

    • MD5

      cdbec3753467486a7fdbb6b24dfbee30

    • SHA1

      1cce7764fa2e06f53a913f5ffcde459359d9bc12

    • SHA256

      db4bac3d9b169ae4a272700aa57f4ef1bd50ddfa481b6c5eb15eebb0871dc1a3

    • SHA512

      0f5a991a63eeb6bf96abded5e4c29cdd4461701c0cc76eb553a8481e2a204f481101d19d7572d275cd8b63fa280e6e0dfc9179ff4762a9c7d00b5981ed7b4d3e

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvAEaFJLL:ymb3NkkiQ3mdBjFIvAvL

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks