Overview

overview

10

Static

static

3

6e59366cbf...cs.exe

windows7-x64

10

6e59366cbf...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6e59366cbf414d2f36b1c406de666110_NeikiAnalytics.exe

  • Size

    55KB

  • Sample

    240531-aet59afe2s

  • MD5

    6e59366cbf414d2f36b1c406de666110

  • SHA1

    fa4d33307c702ba6e3ae81d0fc62fc1d6d857b60

  • SHA256

    2dcbd3b8e67df09445a5c4149d249517abe460116654826fc57cb3cc74970c1b

  • SHA512

    3dffd5182850e60bf92753116dbd0da7144b1fb3df04305797eae64cd175527c23909779d0fe54a1d6c42493e41e6656fc00761bcc08d2934473641e17274317

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIfEVB:ymb3NkkiQ3mdBjFIe

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      6e59366cbf414d2f36b1c406de666110_NeikiAnalytics.exe

    • Size

      55KB

    • MD5

      6e59366cbf414d2f36b1c406de666110

    • SHA1

      fa4d33307c702ba6e3ae81d0fc62fc1d6d857b60

    • SHA256

      2dcbd3b8e67df09445a5c4149d249517abe460116654826fc57cb3cc74970c1b

    • SHA512

      3dffd5182850e60bf92753116dbd0da7144b1fb3df04305797eae64cd175527c23909779d0fe54a1d6c42493e41e6656fc00761bcc08d2934473641e17274317

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIfEVB:ymb3NkkiQ3mdBjFIe

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks