Overview

overview

10

Static

static

3

06d70f1480...cs.exe

windows7-x64

10

06d70f1480...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    06d70f148025e5b316ed7b27a84655c0_NeikiAnalytics.exe

  • Size

    78KB

  • Sample

    240525-w16xtsdh28

  • MD5

    06d70f148025e5b316ed7b27a84655c0

  • SHA1

    870704c520381dd4e9664553634bdb46b7f776e9

  • SHA256

    280663903f1b693b5761558f4df307a00592514bffe7405568b1ab0ebd4914c3

  • SHA512

    120b09854711d96d0ac860c0572cc3c6edbb3804e2a73003e35c2143e9037c3218775a02d032010249a9dfaca16ef7aabfec508e08bd4326d5d99ab7aa2e5751

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAX8YieVIJclPvPJtcdctf:ymb3NkkiQ3mdBjFo68YBVIJc9Jtxtf

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      06d70f148025e5b316ed7b27a84655c0_NeikiAnalytics.exe

    • Size

      78KB

    • MD5

      06d70f148025e5b316ed7b27a84655c0

    • SHA1

      870704c520381dd4e9664553634bdb46b7f776e9

    • SHA256

      280663903f1b693b5761558f4df307a00592514bffe7405568b1ab0ebd4914c3

    • SHA512

      120b09854711d96d0ac860c0572cc3c6edbb3804e2a73003e35c2143e9037c3218775a02d032010249a9dfaca16ef7aabfec508e08bd4326d5d99ab7aa2e5751

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAX8YieVIJclPvPJtcdctf:ymb3NkkiQ3mdBjFo68YBVIJc9Jtxtf

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks