Overview

overview

10

Static

static

3

98677c3399...cs.exe

windows7-x64

10

98677c3399...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    98677c339931efd69197d13b42506220_NeikiAnalytics.exe

  • Size

    442KB

  • Sample

    240603-c21mnagc4z

  • MD5

    98677c339931efd69197d13b42506220

  • SHA1

    4a99a65df1c615a29052705cb79b83a823f1414c

  • SHA256

    ecd4583e76f899bd65edac7700d430af0ffdd0be9a4b30fe13d66ef7dd29ac5f

  • SHA512

    952446ed2488eccbc714b1fd69edaa829bb37c1496d8890f45e1b3c0f7b806d82527f6f72a1aa9e80ca12f9b5437ec2fff50a426e3465fa0cc86fe5382d1e8a6

  • SSDEEP

    3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFwT0JOfZKlLXh/rQi:8cm7ImGddXmNt251UriZFwT+aZKl7Si

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      98677c339931efd69197d13b42506220_NeikiAnalytics.exe

    • Size

      442KB

    • MD5

      98677c339931efd69197d13b42506220

    • SHA1

      4a99a65df1c615a29052705cb79b83a823f1414c

    • SHA256

      ecd4583e76f899bd65edac7700d430af0ffdd0be9a4b30fe13d66ef7dd29ac5f

    • SHA512

      952446ed2488eccbc714b1fd69edaa829bb37c1496d8890f45e1b3c0f7b806d82527f6f72a1aa9e80ca12f9b5437ec2fff50a426e3465fa0cc86fe5382d1e8a6

    • SSDEEP

      3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFwT0JOfZKlLXh/rQi:8cm7ImGddXmNt251UriZFwT+aZKl7Si

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks