Overview

overview

10

Static

static

3

e2419f83c5...cs.exe

windows7-x64

10

e2419f83c5...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e2419f83c56b26582bc2ef0a67a2b130_NeikiAnalytics.exe

  • Size

    247KB

  • Sample

    240520-lyx7ssfa5w

  • MD5

    e2419f83c56b26582bc2ef0a67a2b130

  • SHA1

    750910bb910003acaabb628177581c06fff4e9ac

  • SHA256

    674734c1f86cf477bdc79b781ce95951eb3e6898efa174084b451ad117fa5a39

  • SHA512

    53592c022ac6e866db18f6bddf6c412369240124e8b06f1ecc5d0a862bb67134adc56d029a90299ac8d32f8e3109a7ab0dddce9b0d5b7f15761cd023371f7568

  • SSDEEP

    6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFRV6l:n3C9uD6AUDCa4NYmRw

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      e2419f83c56b26582bc2ef0a67a2b130_NeikiAnalytics.exe

    • Size

      247KB

    • MD5

      e2419f83c56b26582bc2ef0a67a2b130

    • SHA1

      750910bb910003acaabb628177581c06fff4e9ac

    • SHA256

      674734c1f86cf477bdc79b781ce95951eb3e6898efa174084b451ad117fa5a39

    • SHA512

      53592c022ac6e866db18f6bddf6c412369240124e8b06f1ecc5d0a862bb67134adc56d029a90299ac8d32f8e3109a7ab0dddce9b0d5b7f15761cd023371f7568

    • SSDEEP

      6144:n3C9BRo/AIX27NHWpU00VIxas1oa3YiFRV6l:n3C9uD6AUDCa4NYmRw

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks