Overview

overview

10

Static

static

3

3f2d0069a5...cs.exe

windows7-x64

10

3f2d0069a5...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3f2d0069a52397b9811c8256fb2f7f30_NeikiAnalytics.exe

  • Size

    82KB

  • Sample

    240617-dz1qbasbkb

  • MD5

    3f2d0069a52397b9811c8256fb2f7f30

  • SHA1

    1e5f8b90cc753d419488456d3dde51f088dadaa7

  • SHA256

    9dcb40c350e8b9fc5822ca635ed8acd294fe2598736613a00c65aa2d367abf83

  • SHA512

    b1166a4d31e372f6eabd9b2d8084253c0c770375222e5804d8217e1ac74f9de6d5cf039d045576e1a0dbe1f78fc256cd42d22997fb8155cf279d9f5074dabf6f

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAXPfgr2hKmdbcPi2vz:ymb3NkkiQ3mdBjFo6Pfgy3dbc/z

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      3f2d0069a52397b9811c8256fb2f7f30_NeikiAnalytics.exe

    • Size

      82KB

    • MD5

      3f2d0069a52397b9811c8256fb2f7f30

    • SHA1

      1e5f8b90cc753d419488456d3dde51f088dadaa7

    • SHA256

      9dcb40c350e8b9fc5822ca635ed8acd294fe2598736613a00c65aa2d367abf83

    • SHA512

      b1166a4d31e372f6eabd9b2d8084253c0c770375222e5804d8217e1ac74f9de6d5cf039d045576e1a0dbe1f78fc256cd42d22997fb8155cf279d9f5074dabf6f

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAXPfgr2hKmdbcPi2vz:ymb3NkkiQ3mdBjFo6Pfgy3dbc/z

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks