Overview

overview

10

Static

static

3

54973275fb...cs.exe

windows7-x64

10

54973275fb...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    54973275fbbfa5fd1b0aa22fafa6e705f2b046bcd17c3af7b054536d698d013c_NeikiAnalytics.exe

  • Size

    61KB

  • Sample

    240701-qc7asstarh

  • MD5

    55ff4c32c0b4bce212bb47836e7b9dd0

  • SHA1

    8bcf90bc79e5c644d76b628309bd08623f642560

  • SHA256

    54973275fbbfa5fd1b0aa22fafa6e705f2b046bcd17c3af7b054536d698d013c

  • SHA512

    94470166848cdf4487ecedb5997001a210aadab67b4576910d00df342a9981eea420de9dec91a6b32406faba3b1c091de2d1cd3ae34be00f4f75039d14cf61f2

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzkzND:ymb3NkkiQ3mdBjFIvlpD

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      54973275fbbfa5fd1b0aa22fafa6e705f2b046bcd17c3af7b054536d698d013c_NeikiAnalytics.exe

    • Size

      61KB

    • MD5

      55ff4c32c0b4bce212bb47836e7b9dd0

    • SHA1

      8bcf90bc79e5c644d76b628309bd08623f642560

    • SHA256

      54973275fbbfa5fd1b0aa22fafa6e705f2b046bcd17c3af7b054536d698d013c

    • SHA512

      94470166848cdf4487ecedb5997001a210aadab67b4576910d00df342a9981eea420de9dec91a6b32406faba3b1c091de2d1cd3ae34be00f4f75039d14cf61f2

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzkzND:ymb3NkkiQ3mdBjFIvlpD

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks