Overview

overview

10

Static

static

3

8174823015...cs.exe

windows7-x64

10

8174823015...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    817482301587aabd851432fb87355cf0_NeikiAnalytics.exe

  • Size

    125KB

  • Sample

    240523-dwptmsca6x

  • MD5

    817482301587aabd851432fb87355cf0

  • SHA1

    850a8240beff119eb9676c057ca5d948071f52d4

  • SHA256

    41736d145308ba8abed8c18342884ad2ba52b5e13cbb63fd20b3eb3c3ff42bd3

  • SHA512

    be4022055b67b57f76a7a6fd423c05c81507252fb90963fabc1c363e64e83a46b26467d74e1bc5091fba16eea3d7cb3b7f7caea13f959a6031207a08d41b2883

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73oYUCD7R2F2UVbyy0NgVyFsZE:ymb3NkkiQ3mdBjFo73HUoMsAbrxVBa

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      817482301587aabd851432fb87355cf0_NeikiAnalytics.exe

    • Size

      125KB

    • MD5

      817482301587aabd851432fb87355cf0

    • SHA1

      850a8240beff119eb9676c057ca5d948071f52d4

    • SHA256

      41736d145308ba8abed8c18342884ad2ba52b5e13cbb63fd20b3eb3c3ff42bd3

    • SHA512

      be4022055b67b57f76a7a6fd423c05c81507252fb90963fabc1c363e64e83a46b26467d74e1bc5091fba16eea3d7cb3b7f7caea13f959a6031207a08d41b2883

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73oYUCD7R2F2UVbyy0NgVyFsZE:ymb3NkkiQ3mdBjFo73HUoMsAbrxVBa

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks