Overview

overview

10

Static

static

3

0d2457b01a...cs.exe

windows7-x64

10

0d2457b01a...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0d2457b01a542d1a6012f89e24fddc40_NeikiAnalytics.exe

  • Size

    79KB

  • Sample

    240521-znrtxsab8z

  • MD5

    0d2457b01a542d1a6012f89e24fddc40

  • SHA1

    f4c91357dc70b98d1c7922a1cbf8e839c690c24c

  • SHA256

    6b00e05bbc18b72c85c41ac20a47bf15d9470580e7628a6bd4df07e3ead553a9

  • SHA512

    df83117e79f96baa3b5c8411f986bdfc31f4e159c5068a6a0ca568b6fd083066e37d048734801ab8ca4ccd705dd1216f1e046833b345722f490327cda62aa061

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIjaQkPcy8WTeAwHWkDLnR:ymb3NkkiQ3mdBjFIpkPcy8qsHjDDR

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      0d2457b01a542d1a6012f89e24fddc40_NeikiAnalytics.exe

    • Size

      79KB

    • MD5

      0d2457b01a542d1a6012f89e24fddc40

    • SHA1

      f4c91357dc70b98d1c7922a1cbf8e839c690c24c

    • SHA256

      6b00e05bbc18b72c85c41ac20a47bf15d9470580e7628a6bd4df07e3ead553a9

    • SHA512

      df83117e79f96baa3b5c8411f986bdfc31f4e159c5068a6a0ca568b6fd083066e37d048734801ab8ca4ccd705dd1216f1e046833b345722f490327cda62aa061

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIjaQkPcy8WTeAwHWkDLnR:ymb3NkkiQ3mdBjFIpkPcy8qsHjDDR

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks