Overview

overview

10

Static

static

7

0c29d9fe7b...cs.exe

windows7-x64

10

0c29d9fe7b...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0c29d9fe7b0cc85c9f6214dd3d14d260_NeikiAnalytics.exe

  • Size

    61KB

  • Sample

    240601-3k2fqsah3s

  • MD5

    0c29d9fe7b0cc85c9f6214dd3d14d260

  • SHA1

    0b4655e71063d186d9a101b34ab72121a630219b

  • SHA256

    4986accdc394397f4803641be3868a46d28fef8135e78eac9642cbe76f20d815

  • SHA512

    8acb98cdcfb02186033d7d3665ed3d8545a72af40516b1895ac9db7be71826cadb99ec29732ce76af76d42afff18bde65fad6b8a3e3da526a2f73426d3f0d7e1

  • SSDEEP

    1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+EMdbVh:zhOmTsF93UYfwC6GIoutiTWMdbv

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      0c29d9fe7b0cc85c9f6214dd3d14d260_NeikiAnalytics.exe

    • Size

      61KB

    • MD5

      0c29d9fe7b0cc85c9f6214dd3d14d260

    • SHA1

      0b4655e71063d186d9a101b34ab72121a630219b

    • SHA256

      4986accdc394397f4803641be3868a46d28fef8135e78eac9642cbe76f20d815

    • SHA512

      8acb98cdcfb02186033d7d3665ed3d8545a72af40516b1895ac9db7be71826cadb99ec29732ce76af76d42afff18bde65fad6b8a3e3da526a2f73426d3f0d7e1

    • SSDEEP

      1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+EMdbVh:zhOmTsF93UYfwC6GIoutiTWMdbv

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks