Overview

overview

10

Static

static

3

97ae865749...cs.exe

windows7-x64

10

97ae865749...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    97ae8657494d62ab8ac69136cc9de610_NeikiAnalytics.exe

  • Size

    1023KB

  • Sample

    240603-chgqfagg35

  • MD5

    97ae8657494d62ab8ac69136cc9de610

  • SHA1

    4d65703c42cc4c56633a35e8452dbc3412813095

  • SHA256

    a8598ae371984cf353fb785fd60a2a6794832fc0047f8d4179a0ec863324afe5

  • SHA512

    4602a3022feabd52faf5d262a1d6d15e9f1fc9716c46dc8b4f67edbca430c171968a211b3c48453144a096c48e48a615cff0d0771336fc25bbe2a722c2395444

  • SSDEEP

    24576:zQ5aILMCfmAUhrSO1YNWdvCzMPqdUD6dNDmwN7:E5aIwC+AUBsWsXH1

Score
10/10
trickbotbankerevasionexecutiontrojan

Malware Config

Targets

    • Target

      97ae8657494d62ab8ac69136cc9de610_NeikiAnalytics.exe

    • Size

      1023KB

    • MD5

      97ae8657494d62ab8ac69136cc9de610

    • SHA1

      4d65703c42cc4c56633a35e8452dbc3412813095

    • SHA256

      a8598ae371984cf353fb785fd60a2a6794832fc0047f8d4179a0ec863324afe5

    • SHA512

      4602a3022feabd52faf5d262a1d6d15e9f1fc9716c46dc8b4f67edbca430c171968a211b3c48453144a096c48e48a615cff0d0771336fc25bbe2a722c2395444

    • SSDEEP

      24576:zQ5aILMCfmAUhrSO1YNWdvCzMPqdUD6dNDmwN7:E5aIwC+AUBsWsXH1

    Score
    10/10
    trickbotbankerevasionexecutiontrojan

    • Trickbot

      Developed in 2016, TrickBot is one of the more recent banking Trojans.

      trojanbankertrickbot

    • Trickbot x86 loader

      Detected Trickbot's x86 loader that unpacks the x86 payload.

    • Stops running service(s)

      evasionexecution

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks