Overview

overview

10

Static

static

3

e72d18d15a...cs.exe

windows7-x64

10

e72d18d15a...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e72d18d15a79e208898845339e19b560_NeikiAnalytics.exe

  • Size

    63KB

  • Sample

    240520-mdjpcafa87

  • MD5

    e72d18d15a79e208898845339e19b560

  • SHA1

    31b42bd2a42140a0b189a2a60c65d64d4a84e101

  • SHA256

    a4cde34d52b8a3c54ea9cf6d59158bd3a98e99ae4f1c6881900db48d98f60c9a

  • SHA512

    1c74e9011047a9be5f67bb7990be6fc4975bdb1c52b8463d956476d4edf6d0f9327bdd384eb748bf7a1311f8f69a1502b6570588ea6910368150b1472304c39f

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDISoFGDr:ymb3NkkiQ3mdBjFIkv

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      e72d18d15a79e208898845339e19b560_NeikiAnalytics.exe

    • Size

      63KB

    • MD5

      e72d18d15a79e208898845339e19b560

    • SHA1

      31b42bd2a42140a0b189a2a60c65d64d4a84e101

    • SHA256

      a4cde34d52b8a3c54ea9cf6d59158bd3a98e99ae4f1c6881900db48d98f60c9a

    • SHA512

      1c74e9011047a9be5f67bb7990be6fc4975bdb1c52b8463d956476d4edf6d0f9327bdd384eb748bf7a1311f8f69a1502b6570588ea6910368150b1472304c39f

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDISoFGDr:ymb3NkkiQ3mdBjFIkv

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks