Overview

overview

10

Static

static

7

075e7662a2...cs.exe

windows7-x64

10

075e7662a2...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    075e7662a2f93f33ca1043a83830c310_NeikiAnalytics.exe

  • Size

    378KB

  • Sample

    240521-x6zalsfh98

  • MD5

    075e7662a2f93f33ca1043a83830c310

  • SHA1

    0f5ef2a1fc117035bb41d7fd0f39a8c0035b3b9a

  • SHA256

    b0e7f24397cdb86f729a7fdf12fa881afb3172deddc23921a2363ae9e334c55d

  • SHA512

    253b11489e66fe7837441d6794f9f15fb150184c0a27b9bfb46e17ec45d6b1c2e098be3fc1e40d45f87762dd8fb5ef8b70d34ab9ed2ee32b3345222b434255c1

  • SSDEEP

    6144:9cm4FmowdHoS4WEkMawdHoSbdwqGw+tw+ttidCyH:/4wFHoS4WEkMTHoSbG++tw+tYYyH

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      075e7662a2f93f33ca1043a83830c310_NeikiAnalytics.exe

    • Size

      378KB

    • MD5

      075e7662a2f93f33ca1043a83830c310

    • SHA1

      0f5ef2a1fc117035bb41d7fd0f39a8c0035b3b9a

    • SHA256

      b0e7f24397cdb86f729a7fdf12fa881afb3172deddc23921a2363ae9e334c55d

    • SHA512

      253b11489e66fe7837441d6794f9f15fb150184c0a27b9bfb46e17ec45d6b1c2e098be3fc1e40d45f87762dd8fb5ef8b70d34ab9ed2ee32b3345222b434255c1

    • SSDEEP

      6144:9cm4FmowdHoS4WEkMawdHoSbdwqGw+tw+ttidCyH:/4wFHoS4WEkMTHoSbG++tw+tYYyH

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks