Overview

overview

10

Static

static

7

6e1b8d80fc...cs.exe

windows7-x64

10

6e1b8d80fc...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6e1b8d80fc75dfc92364fc9fc73bbec0_NeikiAnalytics.exe

  • Size

    164KB

  • Sample

    240523-bya26agf91

  • MD5

    6e1b8d80fc75dfc92364fc9fc73bbec0

  • SHA1

    bcc4b9b909e233dea2eada661ef6f275929d290c

  • SHA256

    90cf4049488b01928353a1532bd34f5912f57d767f95199281104c05d42e339a

  • SHA512

    3adaf765b7383d7acd6ae1a51a2915a34418224f08561597f3f10c995779544d0744cef82ce657d9f5b5f7f420c2e156af31f40d70e3f23095ae60ac0800de3d

  • SSDEEP

    3072:0hOmTsF93UYfwC6GIoutXEnkeBahPmSBPt7ZY16E:0cm4FmowdHoSet4hPhTlY4E

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      6e1b8d80fc75dfc92364fc9fc73bbec0_NeikiAnalytics.exe

    • Size

      164KB

    • MD5

      6e1b8d80fc75dfc92364fc9fc73bbec0

    • SHA1

      bcc4b9b909e233dea2eada661ef6f275929d290c

    • SHA256

      90cf4049488b01928353a1532bd34f5912f57d767f95199281104c05d42e339a

    • SHA512

      3adaf765b7383d7acd6ae1a51a2915a34418224f08561597f3f10c995779544d0744cef82ce657d9f5b5f7f420c2e156af31f40d70e3f23095ae60ac0800de3d

    • SSDEEP

      3072:0hOmTsF93UYfwC6GIoutXEnkeBahPmSBPt7ZY16E:0cm4FmowdHoSet4hPhTlY4E

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks