Overview

overview

10

Static

static

3

8ddbc8099f...cs.exe

windows7-x64

10

8ddbc8099f...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8ddbc8099fe1edc089c729a99d6d5ea0_NeikiAnalytics.exe

  • Size

    68KB

  • Sample

    240526-k4lkhsea65

  • MD5

    8ddbc8099fe1edc089c729a99d6d5ea0

  • SHA1

    f28af04022f24346385622184ef2f476757c1b4a

  • SHA256

    26dc6bf9f5c8c5c7cd19a25d0af62608d0344f8cb890ddd5e78bd38547f06d83

  • SHA512

    c13c579f1042cc758978e39437a8f29bc69f19b95d04daacefff318e7971b5a69be469724d5f3da71e90ba52d14b34a98b69a1e992998ca84312cea161579383

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIfv7+afCD+QsQbuf:ymb3NkkiQ3mdBjFIfvTfCD+H/

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      8ddbc8099fe1edc089c729a99d6d5ea0_NeikiAnalytics.exe

    • Size

      68KB

    • MD5

      8ddbc8099fe1edc089c729a99d6d5ea0

    • SHA1

      f28af04022f24346385622184ef2f476757c1b4a

    • SHA256

      26dc6bf9f5c8c5c7cd19a25d0af62608d0344f8cb890ddd5e78bd38547f06d83

    • SHA512

      c13c579f1042cc758978e39437a8f29bc69f19b95d04daacefff318e7971b5a69be469724d5f3da71e90ba52d14b34a98b69a1e992998ca84312cea161579383

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIfv7+afCD+QsQbuf:ymb3NkkiQ3mdBjFIfvTfCD+H/

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks