Overview

overview

10

Static

static

3

7102099956...cs.exe

windows7-x64

10

7102099956...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7102099956b6b4f7d2029291f66b46f0_NeikiAnalytics.exe

  • Size

    67KB

  • Sample

    240523-b7y6cahd84

  • MD5

    7102099956b6b4f7d2029291f66b46f0

  • SHA1

    fe1affcb4485ef98af4d35c495f6beb1a47199ef

  • SHA256

    5aaa295c7588b0d31d5ee1af087278e4fc28ee473194c315fa286b81a55a6b55

  • SHA512

    5acec558a8f0bbc4f19f1f10126d6306ebefb1c79d28fa0ebcf23b728f340a029f3d9fa1350655b36b5acae87802ac40a961d0e9c9ec4f91325ef06236527f5e

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIV+:ymb3NkkiQ3mdBjFIFdJ8bE

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      7102099956b6b4f7d2029291f66b46f0_NeikiAnalytics.exe

    • Size

      67KB

    • MD5

      7102099956b6b4f7d2029291f66b46f0

    • SHA1

      fe1affcb4485ef98af4d35c495f6beb1a47199ef

    • SHA256

      5aaa295c7588b0d31d5ee1af087278e4fc28ee473194c315fa286b81a55a6b55

    • SHA512

      5acec558a8f0bbc4f19f1f10126d6306ebefb1c79d28fa0ebcf23b728f340a029f3d9fa1350655b36b5acae87802ac40a961d0e9c9ec4f91325ef06236527f5e

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIV+:ymb3NkkiQ3mdBjFIFdJ8bE

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks