Overview

overview

10

Static

static

3

7fa5aa3743...cs.exe

windows7-x64

10

7fa5aa3743...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7fa5aa3743333c20bb6d2633f2c16a90_NeikiAnalytics.exe

  • Size

    483KB

  • Sample

    240523-dn5vwsbh86

  • MD5

    7fa5aa3743333c20bb6d2633f2c16a90

  • SHA1

    5d850b79226d9dde21a2a6f8338985aa53f6b0a0

  • SHA256

    9e6d0380653449d6c1f0f8b5dd0a342f5d6ffd4a50641572d53a7244002391c3

  • SHA512

    efbe41265c4c7ac7130d95b19987b53506489b265b10e8cc84704c166da692b0b75e1e436e0eb45be55de47fd95b33a9835a0867834d96a61b9f6338dd7900d3

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwu1b26X1wjhtSizjE:q7Tc2NYHUrAwqzcy

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      7fa5aa3743333c20bb6d2633f2c16a90_NeikiAnalytics.exe

    • Size

      483KB

    • MD5

      7fa5aa3743333c20bb6d2633f2c16a90

    • SHA1

      5d850b79226d9dde21a2a6f8338985aa53f6b0a0

    • SHA256

      9e6d0380653449d6c1f0f8b5dd0a342f5d6ffd4a50641572d53a7244002391c3

    • SHA512

      efbe41265c4c7ac7130d95b19987b53506489b265b10e8cc84704c166da692b0b75e1e436e0eb45be55de47fd95b33a9835a0867834d96a61b9f6338dd7900d3

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwu1b26X1wjhtSizjE:q7Tc2NYHUrAwqzcy

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks