Overview

overview

10

Static

static

3

0900ac89e6...cs.exe

windows7-x64

10

0900ac89e6...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0900ac89e62ad767ba8f3d8680949280_NeikiAnalytics.exe

  • Size

    68KB

  • Sample

    240521-yy1n5sha38

  • MD5

    0900ac89e62ad767ba8f3d8680949280

  • SHA1

    344f8b2a0800592a7dc792ef9ee2df785ac9212b

  • SHA256

    e7634c816c626607edcddc8cbb8fd7dd303369fa5bc96b6d7d4aacfa94bbf70f

  • SHA512

    e6f319b66656a49396e86b9fa244789646001b3ba5ca147430a9ea513ab50256143ecbe8d1b902163471239c6b526c5cbbe83ef373dc7cd967e0b73ad556955a

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUwcsbY/I:ymb3NkkiQ3mdBjF0yjcsMQ

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      0900ac89e62ad767ba8f3d8680949280_NeikiAnalytics.exe

    • Size

      68KB

    • MD5

      0900ac89e62ad767ba8f3d8680949280

    • SHA1

      344f8b2a0800592a7dc792ef9ee2df785ac9212b

    • SHA256

      e7634c816c626607edcddc8cbb8fd7dd303369fa5bc96b6d7d4aacfa94bbf70f

    • SHA512

      e6f319b66656a49396e86b9fa244789646001b3ba5ca147430a9ea513ab50256143ecbe8d1b902163471239c6b526c5cbbe83ef373dc7cd967e0b73ad556955a

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUwcsbY/I:ymb3NkkiQ3mdBjF0yjcsMQ

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks