Overview

overview

10

Static

static

7

ab531f0454...cs.exe

windows7-x64

10

ab531f0454...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    ab531f0454a98bd76cd5cc118c53cef9be445d0e0ac9c6168267402ac6ea8c41_NeikiAnalytics.exe

  • Size

    260KB

  • Sample

    240629-plmgbaxdqc

  • MD5

    99d7b7d29cc96e1225daabd9b8935db0

  • SHA1

    8ff4f74dd765b2bda407f4dfea68b9cb40fff562

  • SHA256

    ab531f0454a98bd76cd5cc118c53cef9be445d0e0ac9c6168267402ac6ea8c41

  • SHA512

    9a09fdf04cfe7034d3456cca8c769a32af8efc8774cc2041ca79e7efb62eee2341a7534326fb9b2512ae806c05cebc1896f219fed70bc697797598c36572a103

  • SSDEEP

    6144:kcm4FmowdHoSphraH+W0+9JGW594s2jULIDNc71raS:y4wFHoS3eeWR9JGW594tjU6wgS

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      ab531f0454a98bd76cd5cc118c53cef9be445d0e0ac9c6168267402ac6ea8c41_NeikiAnalytics.exe

    • Size

      260KB

    • MD5

      99d7b7d29cc96e1225daabd9b8935db0

    • SHA1

      8ff4f74dd765b2bda407f4dfea68b9cb40fff562

    • SHA256

      ab531f0454a98bd76cd5cc118c53cef9be445d0e0ac9c6168267402ac6ea8c41

    • SHA512

      9a09fdf04cfe7034d3456cca8c769a32af8efc8774cc2041ca79e7efb62eee2341a7534326fb9b2512ae806c05cebc1896f219fed70bc697797598c36572a103

    • SSDEEP

      6144:kcm4FmowdHoSphraH+W0+9JGW594s2jULIDNc71raS:y4wFHoS3eeWR9JGW594tjU6wgS

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks