Overview

overview

10

Static

static

3

011b8cdb25...cs.exe

windows7-x64

10

011b8cdb25...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    011b8cdb25e85ea6efce0efdd83e7890_NeikiAnalytics.exe

  • Size

    68KB

  • Sample

    240528-y5l5bsca28

  • MD5

    011b8cdb25e85ea6efce0efdd83e7890

  • SHA1

    7a34c4f3782121274953d04dbf44cd1ece395871

  • SHA256

    78ccee4dcf732c616fc707ed30ca20a8f0a5d0a36c8f49bbaaf6d91ba6dab386

  • SHA512

    1ca4b19f25ca31f29265b6b4e36504b0addae2ae98615487a4322c3df01d1013fc4bd2244a31eb804777184c1f209588aaf4359ac16c059b0778c7eb633bc2f3

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJ/RWPqBjfjW:ymb3NkkiQ3mdBjFIqsjC

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      011b8cdb25e85ea6efce0efdd83e7890_NeikiAnalytics.exe

    • Size

      68KB

    • MD5

      011b8cdb25e85ea6efce0efdd83e7890

    • SHA1

      7a34c4f3782121274953d04dbf44cd1ece395871

    • SHA256

      78ccee4dcf732c616fc707ed30ca20a8f0a5d0a36c8f49bbaaf6d91ba6dab386

    • SHA512

      1ca4b19f25ca31f29265b6b4e36504b0addae2ae98615487a4322c3df01d1013fc4bd2244a31eb804777184c1f209588aaf4359ac16c059b0778c7eb633bc2f3

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJ/RWPqBjfjW:ymb3NkkiQ3mdBjFIqsjC

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks