Overview

overview

10

Static

static

3

3a997ba6ff...cs.exe

windows7-x64

10

3a997ba6ff...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3a997ba6ffe1391524f1c406f9ecca90_NeikiAnalytics.exe

  • Size

    76KB

  • Sample

    240529-eh4ajshf5v

  • MD5

    3a997ba6ffe1391524f1c406f9ecca90

  • SHA1

    85b1aedbaa2246c245bc81725284028ac65a8959

  • SHA256

    8edcc0ae0debdae9c029b3dd97ec1c2cbcaae06fe262d77d99e1b9c3b39449dc

  • SHA512

    8fc04483de2432a5c8445b3fe95d195051aa8a2de3e71cc6076edf0a25473df8a3194f65b3eb2dc28017fe9dba81964a5082fcc3a80a02181a060b97d84869e2

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2wVEJo:ymb3NkkiQ3mdBjF+3TU2KEJo

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      3a997ba6ffe1391524f1c406f9ecca90_NeikiAnalytics.exe

    • Size

      76KB

    • MD5

      3a997ba6ffe1391524f1c406f9ecca90

    • SHA1

      85b1aedbaa2246c245bc81725284028ac65a8959

    • SHA256

      8edcc0ae0debdae9c029b3dd97ec1c2cbcaae06fe262d77d99e1b9c3b39449dc

    • SHA512

      8fc04483de2432a5c8445b3fe95d195051aa8a2de3e71cc6076edf0a25473df8a3194f65b3eb2dc28017fe9dba81964a5082fcc3a80a02181a060b97d84869e2

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2wVEJo:ymb3NkkiQ3mdBjF+3TU2KEJo

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks