Overview

overview

10

Static

static

3

74b5996205...cs.exe

windows7-x64

10

74b5996205...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    74b5996205fc2aa14cb1bc194a108b3ce8807bdbcf5ee6c99f93b2e5ceb89671_NeikiAnalytics.exe

  • Size

    181KB

  • Sample

    240628-dzfp5s1fqp

  • MD5

    c6f02c59b49b45d68a56cc6296eaeed0

  • SHA1

    a05a1821c4f31bcbec3df23cc40b27710fcba297

  • SHA256

    74b5996205fc2aa14cb1bc194a108b3ce8807bdbcf5ee6c99f93b2e5ceb89671

  • SHA512

    74f2ceca3d64096a36eeca50c02abf60654afec3dce478226aefeaf75c4df3e151b8a265e7f9f116bfb56b8346a55d216afa6ca05aa409ece66cef87defa93ac

  • SSDEEP

    1536:PvQBeOGtrYSSsrc93UBIfdC67m6AJiqgT4+IJPhbMX:PhOm2sI93UufdC67ciJTm5hIX

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      74b5996205fc2aa14cb1bc194a108b3ce8807bdbcf5ee6c99f93b2e5ceb89671_NeikiAnalytics.exe

    • Size

      181KB

    • MD5

      c6f02c59b49b45d68a56cc6296eaeed0

    • SHA1

      a05a1821c4f31bcbec3df23cc40b27710fcba297

    • SHA256

      74b5996205fc2aa14cb1bc194a108b3ce8807bdbcf5ee6c99f93b2e5ceb89671

    • SHA512

      74f2ceca3d64096a36eeca50c02abf60654afec3dce478226aefeaf75c4df3e151b8a265e7f9f116bfb56b8346a55d216afa6ca05aa409ece66cef87defa93ac

    • SSDEEP

      1536:PvQBeOGtrYSSsrc93UBIfdC67m6AJiqgT4+IJPhbMX:PhOm2sI93UufdC67ciJTm5hIX

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks