Overview

overview

10

Static

static

3

5753a3ed64...cs.exe

windows7-x64

10

5753a3ed64...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    5753a3ed64664111e67962837584ab30_NeikiAnalytics.exe

  • Size

    460KB

  • Sample

    240529-1whrnacc24

  • MD5

    5753a3ed64664111e67962837584ab30

  • SHA1

    792a2d5c93083e12e890f77699ec9777398ecb12

  • SHA256

    61aad338b59b0c3564afe313d06786771185c0280c0dbcce8c3f3f72dfaf0927

  • SHA512

    ed5adb6cd090dfd585380e354b25dba60fc1fd3675c32a2b7083a3b0973ced52c59109307adea1eef187db2945b8bfce7e001005d216cdfa4a46f144bc190767

  • SSDEEP

    6144:n3C9BRo7tvnJ9Fywhk/TJTaYvMmr3C9BRo7tvnJ9Fywhk/Tku2:n3C9ytvn8whkbJTaFmr3C9ytvn8whkbW

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      5753a3ed64664111e67962837584ab30_NeikiAnalytics.exe

    • Size

      460KB

    • MD5

      5753a3ed64664111e67962837584ab30

    • SHA1

      792a2d5c93083e12e890f77699ec9777398ecb12

    • SHA256

      61aad338b59b0c3564afe313d06786771185c0280c0dbcce8c3f3f72dfaf0927

    • SHA512

      ed5adb6cd090dfd585380e354b25dba60fc1fd3675c32a2b7083a3b0973ced52c59109307adea1eef187db2945b8bfce7e001005d216cdfa4a46f144bc190767

    • SSDEEP

      6144:n3C9BRo7tvnJ9Fywhk/TJTaYvMmr3C9BRo7tvnJ9Fywhk/Tku2:n3C9ytvn8whkbJTaFmr3C9ytvn8whkbW

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks