Overview

overview

10

Static

static

3

047c34d2d7...cs.exe

windows7-x64

10

047c34d2d7...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    047c34d2d7aac1e59f107f952c756310_NeikiAnalytics.exe

  • Size

    286KB

  • Sample

    240526-1g9a3ach31

  • MD5

    047c34d2d7aac1e59f107f952c756310

  • SHA1

    fab1823e9daf7f73aa033a58008601d90f179275

  • SHA256

    cfb9d3e8558a264290e1ab9b8ec69cd280ed46e5f6ea48436a9a58de8e908ec9

  • SHA512

    0a0197517df0e997c3c2ce3dac8a50c8016209dfda9fbc4fb2a226c068f9a8e4fb3cec3c354e19f395c90a22f7d67021ae106c19cfe5caf9988fa09285af1e29

  • SSDEEP

    3072:ThOm2sI93UufdC67cipfmCiiiXAQ5lpBoGYwNNhu0CzhKPJFj:Tcm7ImGddXlWrXF5lpKGYV0wh6J5

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      047c34d2d7aac1e59f107f952c756310_NeikiAnalytics.exe

    • Size

      286KB

    • MD5

      047c34d2d7aac1e59f107f952c756310

    • SHA1

      fab1823e9daf7f73aa033a58008601d90f179275

    • SHA256

      cfb9d3e8558a264290e1ab9b8ec69cd280ed46e5f6ea48436a9a58de8e908ec9

    • SHA512

      0a0197517df0e997c3c2ce3dac8a50c8016209dfda9fbc4fb2a226c068f9a8e4fb3cec3c354e19f395c90a22f7d67021ae106c19cfe5caf9988fa09285af1e29

    • SSDEEP

      3072:ThOm2sI93UufdC67cipfmCiiiXAQ5lpBoGYwNNhu0CzhKPJFj:Tcm7ImGddXlWrXF5lpKGYV0wh6J5

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks