Overview

overview

10

Static

static

7

2d06dc20b8...cs.exe

windows7-x64

10

2d06dc20b8...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2d06dc20b8fe2704b1c86da70fe913b0_NeikiAnalytics.exe

  • Size

    453KB

  • Sample

    240523-wb5cpsah31

  • MD5

    2d06dc20b8fe2704b1c86da70fe913b0

  • SHA1

    b05fd18fdfdf28e51fc6ec045f95ac25290e603d

  • SHA256

    811ed67606e34d4a9adfdb5c819278537957684db1fb97c8a37b85d04f3d5105

  • SHA512

    3fcaa8dc1fd4a98b268ff4566802e3e70d5ed745e147ec22a83ed85d2660d6fe4b43bea7d688d58e821fa04d22f97e4f44a7a43c0caee35726845b2c2988adb1

  • SSDEEP

    6144:rcm4FmowdHoSphraHcpOaKHpXfRo0V8JcgE+ezpg1xrloBNTNm9:x4wFHoS3eFaKHpv/VycgE81lg+

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      2d06dc20b8fe2704b1c86da70fe913b0_NeikiAnalytics.exe

    • Size

      453KB

    • MD5

      2d06dc20b8fe2704b1c86da70fe913b0

    • SHA1

      b05fd18fdfdf28e51fc6ec045f95ac25290e603d

    • SHA256

      811ed67606e34d4a9adfdb5c819278537957684db1fb97c8a37b85d04f3d5105

    • SHA512

      3fcaa8dc1fd4a98b268ff4566802e3e70d5ed745e147ec22a83ed85d2660d6fe4b43bea7d688d58e821fa04d22f97e4f44a7a43c0caee35726845b2c2988adb1

    • SSDEEP

      6144:rcm4FmowdHoSphraHcpOaKHpXfRo0V8JcgE+ezpg1xrloBNTNm9:x4wFHoS3eFaKHpv/VycgE81lg+

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks