Overview

overview

10

Static

static

7

eba08d706a...cs.exe

windows7-x64

10

eba08d706a...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eba08d706a1a7b57fda770aaebf6a7f0_NeikiAnalytics.exe

  • Size

    368KB

  • Sample

    240520-mr4xfagf3w

  • MD5

    eba08d706a1a7b57fda770aaebf6a7f0

  • SHA1

    d9cf73ed2e25e4cbfd188cc25080b6510da6344e

  • SHA256

    be26825046da2576039b03f60ad70d735341d0f328d6b941b31a57941cb4ef5a

  • SHA512

    992782617c59b5cc9ec0d89a901b8a7d0ea865d6a8cd1301928834edb313f23063f3ac3a66ad465013c071538f4c66d96a0c1519eb81b38d183f1d7507fa8562

  • SSDEEP

    6144:kcm4FmowdHoSphraHcpOFltH4tiAlSpgFZAzwdjcIlSpgFZZr3GSM/xl:y4wFHoS3eFplAlSpgFZAKjcIlSpgFZZA

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      eba08d706a1a7b57fda770aaebf6a7f0_NeikiAnalytics.exe

    • Size

      368KB

    • MD5

      eba08d706a1a7b57fda770aaebf6a7f0

    • SHA1

      d9cf73ed2e25e4cbfd188cc25080b6510da6344e

    • SHA256

      be26825046da2576039b03f60ad70d735341d0f328d6b941b31a57941cb4ef5a

    • SHA512

      992782617c59b5cc9ec0d89a901b8a7d0ea865d6a8cd1301928834edb313f23063f3ac3a66ad465013c071538f4c66d96a0c1519eb81b38d183f1d7507fa8562

    • SSDEEP

      6144:kcm4FmowdHoSphraHcpOFltH4tiAlSpgFZAzwdjcIlSpgFZZr3GSM/xl:y4wFHoS3eFplAlSpgFZAKjcIlSpgFZZA

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks