Overview

overview

10

Static

static

3

3aced2fe5e...cs.exe

windows7-x64

10

3aced2fe5e...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3aced2fe5ea98bd1189e9e98fa5d6d70_NeikiAnalytics.exe

  • Size

    480KB

  • Sample

    240528-j842zscd6x

  • MD5

    3aced2fe5ea98bd1189e9e98fa5d6d70

  • SHA1

    309ed4c75f34c125c72e4cdb5d112f6285fb1812

  • SHA256

    2afa8e9af3c17f8272f45380fb0bef22a7b0a1825bf364553cce7e61f42ae240

  • SHA512

    494a439ebbf63771aa58409b8779e222e88d596198ada156dae7a29b7bd716d1585dc0b7e759f73a6467f91aac8e5f44a1a6b043b753ae6383472c5886f70af8

  • SSDEEP

    12288:n3C9uDVw6326pKZ9asZqoZHz+evcn0Meh2Fez1:Su326p0aroZt0s1

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      3aced2fe5ea98bd1189e9e98fa5d6d70_NeikiAnalytics.exe

    • Size

      480KB

    • MD5

      3aced2fe5ea98bd1189e9e98fa5d6d70

    • SHA1

      309ed4c75f34c125c72e4cdb5d112f6285fb1812

    • SHA256

      2afa8e9af3c17f8272f45380fb0bef22a7b0a1825bf364553cce7e61f42ae240

    • SHA512

      494a439ebbf63771aa58409b8779e222e88d596198ada156dae7a29b7bd716d1585dc0b7e759f73a6467f91aac8e5f44a1a6b043b753ae6383472c5886f70af8

    • SSDEEP

      12288:n3C9uDVw6326pKZ9asZqoZHz+evcn0Meh2Fez1:Su326p0aroZt0s1

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks