Overview

overview

10

Static

static

3

efb9bd590f...cs.exe

windows7-x64

10

efb9bd590f...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    efb9bd590faa892f6b16690c3902ebd0_NeikiAnalytics.exe

  • Size

    90KB

  • Sample

    240520-m6ntrsgf37

  • MD5

    efb9bd590faa892f6b16690c3902ebd0

  • SHA1

    7d8bbc1181e2331ef37764e1fda97ff7ef7475a7

  • SHA256

    52664a1a2e279e5d7921e879b20adfd929edfdc52dddf1e298455d175fa96140

  • SHA512

    72e23627b02a715c05cb093ede646dac1c000b77e6646637f1427af7f64a3d70731701c5626141295e649fa68284bc7e2d162fcdda946402d27af29435dc14cf

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIQIDyviFxx2hCtgIMLP9rBZaRB1:ymb3NkkiQ3mdBjFIVLd2hWZGreRCYB5

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      efb9bd590faa892f6b16690c3902ebd0_NeikiAnalytics.exe

    • Size

      90KB

    • MD5

      efb9bd590faa892f6b16690c3902ebd0

    • SHA1

      7d8bbc1181e2331ef37764e1fda97ff7ef7475a7

    • SHA256

      52664a1a2e279e5d7921e879b20adfd929edfdc52dddf1e298455d175fa96140

    • SHA512

      72e23627b02a715c05cb093ede646dac1c000b77e6646637f1427af7f64a3d70731701c5626141295e649fa68284bc7e2d162fcdda946402d27af29435dc14cf

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIQIDyviFxx2hCtgIMLP9rBZaRB1:ymb3NkkiQ3mdBjFIVLd2hWZGreRCYB5

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks