Overview

overview

10

Static

static

3

a6ade6dc8d...cs.exe

windows7-x64

10

a6ade6dc8d...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a6ade6dc8d60af01e49f8e5aa8032480_NeikiAnalytics.exe

  • Size

    149KB

  • Sample

    240524-e172fsdb5y

  • MD5

    a6ade6dc8d60af01e49f8e5aa8032480

  • SHA1

    da2e5769e4b8e17afd827d0dd467fcb03036e6bb

  • SHA256

    890efe9cf98a0d06c12bbecae7733f8a9ad512a2adf5c83229b0ecdc38df1989

  • SHA512

    5f906ab068ea062ded0cac31652e78c605ac34a4bade8e4db2468012fb848c037b9493743834610a2efe2e08ed4b1a2245e353d167c260953f98eff03029fcb8

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFo7LAIRUohDmRG08fKkZEU5hkVaqaK6qa50iKVb:n3C9BRo/AIuuOmfDZEU5OVFiQ

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      a6ade6dc8d60af01e49f8e5aa8032480_NeikiAnalytics.exe

    • Size

      149KB

    • MD5

      a6ade6dc8d60af01e49f8e5aa8032480

    • SHA1

      da2e5769e4b8e17afd827d0dd467fcb03036e6bb

    • SHA256

      890efe9cf98a0d06c12bbecae7733f8a9ad512a2adf5c83229b0ecdc38df1989

    • SHA512

      5f906ab068ea062ded0cac31652e78c605ac34a4bade8e4db2468012fb848c037b9493743834610a2efe2e08ed4b1a2245e353d167c260953f98eff03029fcb8

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFo7LAIRUohDmRG08fKkZEU5hkVaqaK6qa50iKVb:n3C9BRo/AIuuOmfDZEU5OVFiQ

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks