Overview

overview

10

Static

static

7

45ad003da5...cs.exe

windows7-x64

10

45ad003da5...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    45ad003da58b4f8ecd9d574443dce020_NeikiAnalytics.exe

  • Size

    233KB

  • Sample

    240522-1tdpxsac51

  • MD5

    45ad003da58b4f8ecd9d574443dce020

  • SHA1

    79feaf9f95cd5f35bc5e6378445f9db73154edf5

  • SHA256

    4e8bf1c7e1ec9cbf4ab3fc8ad5d508ead2bfd791a797e33ba9372dc34b5bc8c9

  • SHA512

    0c325c4ea53f063ab08ae5d06a0475a95c4d44d896980ff197a75b9ae12bfc9d0f49045a750553c7f683c6be6ddf636bf7d9c831b6686251e0ccf2c8685db387

  • SSDEEP

    6144:kcm4FmowdHoSSGpJw4PqhraHcpOmFTHDGYhEf5X2a9E:y4wFHoSSGpJwGeeFmFTNAp2AE

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      45ad003da58b4f8ecd9d574443dce020_NeikiAnalytics.exe

    • Size

      233KB

    • MD5

      45ad003da58b4f8ecd9d574443dce020

    • SHA1

      79feaf9f95cd5f35bc5e6378445f9db73154edf5

    • SHA256

      4e8bf1c7e1ec9cbf4ab3fc8ad5d508ead2bfd791a797e33ba9372dc34b5bc8c9

    • SHA512

      0c325c4ea53f063ab08ae5d06a0475a95c4d44d896980ff197a75b9ae12bfc9d0f49045a750553c7f683c6be6ddf636bf7d9c831b6686251e0ccf2c8685db387

    • SSDEEP

      6144:kcm4FmowdHoSSGpJw4PqhraHcpOmFTHDGYhEf5X2a9E:y4wFHoSSGpJwGeeFmFTNAp2AE

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks