Overview

overview

10

Static

static

3

998f35c5d6...cs.exe

windows7-x64

10

998f35c5d6...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    998f35c5d6bffb18e9ea895dd2d38e80_NeikiAnalytics.exe

  • Size

    480KB

  • Sample

    240523-2f6n8abe4s

  • MD5

    998f35c5d6bffb18e9ea895dd2d38e80

  • SHA1

    611f8c796a7ba860d6d2be3abe3ab588581fbd2b

  • SHA256

    38644f7eac9c4896e3ea355f79f48f723a22088d502711e3dbe01f2f9f7bf87b

  • SHA512

    78f9ba545103434126e9403ed7e2a820a619746a7d7f7e024d29f26c2ce586c36048433516f5217b679c1fa470c6f6a9963f0f176fa8d846ce8f08a63629cf03

  • SSDEEP

    12288:n3C9uDVw6326pKZ9asZqoZHz+evcn0Meh2Fezg:Su326p0aroZt0sg

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      998f35c5d6bffb18e9ea895dd2d38e80_NeikiAnalytics.exe

    • Size

      480KB

    • MD5

      998f35c5d6bffb18e9ea895dd2d38e80

    • SHA1

      611f8c796a7ba860d6d2be3abe3ab588581fbd2b

    • SHA256

      38644f7eac9c4896e3ea355f79f48f723a22088d502711e3dbe01f2f9f7bf87b

    • SHA512

      78f9ba545103434126e9403ed7e2a820a619746a7d7f7e024d29f26c2ce586c36048433516f5217b679c1fa470c6f6a9963f0f176fa8d846ce8f08a63629cf03

    • SSDEEP

      12288:n3C9uDVw6326pKZ9asZqoZHz+evcn0Meh2Fezg:Su326p0aroZt0sg

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks