Overview

overview

10

Static

static

3

062fbc89ed...cs.exe

windows7-x64

10

062fbc89ed...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    062fbc89edfabbe4d40646eaaa1df6f0_NeikiAnalytics.exe

  • Size

    74KB

  • Sample

    240521-x35yzsfh6v

  • MD5

    062fbc89edfabbe4d40646eaaa1df6f0

  • SHA1

    deb31373d58cbe019bc3df1758aee381151444e3

  • SHA256

    006eca97dc6bb8d62ffd77d69cd7a8977a8b8ba321f21a9825c673a08764a80a

  • SHA512

    ef116305234975e178c54d8f8d412f2c3e908e3904ebfdc4127c1f71729c6d95c71c85ad7ddb42bc01f4763eba13413ef4588deb165cb069787c63c6e4e9893f

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSsD+cGUFzJI:ymb3NkkiQ3mdBjFIwsDhbN6

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      062fbc89edfabbe4d40646eaaa1df6f0_NeikiAnalytics.exe

    • Size

      74KB

    • MD5

      062fbc89edfabbe4d40646eaaa1df6f0

    • SHA1

      deb31373d58cbe019bc3df1758aee381151444e3

    • SHA256

      006eca97dc6bb8d62ffd77d69cd7a8977a8b8ba321f21a9825c673a08764a80a

    • SHA512

      ef116305234975e178c54d8f8d412f2c3e908e3904ebfdc4127c1f71729c6d95c71c85ad7ddb42bc01f4763eba13413ef4588deb165cb069787c63c6e4e9893f

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSsD+cGUFzJI:ymb3NkkiQ3mdBjFIwsDhbN6

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks