Overview

overview

10

Static

static

7

bacb425480...cs.exe

windows7-x64

10

bacb425480...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bacb4254802469638b1af51e0bf073c0_NeikiAnalytics.exe

  • Size

    380KB

  • Sample

    240525-ls3v4add57

  • MD5

    bacb4254802469638b1af51e0bf073c0

  • SHA1

    ae9fc092d5789b094544d58ceaf805bd22889728

  • SHA256

    be9125bf8d5baed4165273ec9d6c2f6194039db9692b4aaefb3f4ccc1ff816a0

  • SHA512

    e7bbbc07718ab8326a9b8e76f6b4515fc74a7bee21b46c48b55bac0a7c495347ab52795621cfd53151e24fac7cd9e7b14638fbca3bbdb8940587cea8d74e28d6

  • SSDEEP

    6144:Ocm4FmowdHoSsm4FIc1/cm4FmowdHoSsiNlcJcmHYC9/jvvfwL+TLPfSRcm4FVoX:w4wFHoSl4h4wFHoS24yTgL+zfu4/FHof

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      bacb4254802469638b1af51e0bf073c0_NeikiAnalytics.exe

    • Size

      380KB

    • MD5

      bacb4254802469638b1af51e0bf073c0

    • SHA1

      ae9fc092d5789b094544d58ceaf805bd22889728

    • SHA256

      be9125bf8d5baed4165273ec9d6c2f6194039db9692b4aaefb3f4ccc1ff816a0

    • SHA512

      e7bbbc07718ab8326a9b8e76f6b4515fc74a7bee21b46c48b55bac0a7c495347ab52795621cfd53151e24fac7cd9e7b14638fbca3bbdb8940587cea8d74e28d6

    • SSDEEP

      6144:Ocm4FmowdHoSsm4FIc1/cm4FmowdHoSsiNlcJcmHYC9/jvvfwL+TLPfSRcm4FVoX:w4wFHoSl4h4wFHoS24yTgL+zfu4/FHof

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks