General

  • Target

    4d0b19513986ae2c19b443cb5c889e20_NeikiAnalytics

  • Size

    94KB

  • Sample

    240509-q3ctwace9x

  • MD5

    4d0b19513986ae2c19b443cb5c889e20

  • SHA1

    82b23a64d9eb327c930b2a53c4d911b862ba10ac

  • SHA256

    2e62c70fad803ab3ace1d9492d3f6a18d6296ce05273549579e0e2a67fe0ab66

  • SHA512

    a61668f02a754f70fa6c9d30098b0f9a65b68ad1f20d64688eadd2f923ef74bacd22fd9ac443f21f6c7e11fb820a72f69801662b7a449f12902c50d9edf98303

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJAg8dtq:ymb3NkkiQ3mdBjFIWeFGyAsJAg2q

Malware Config

Targets

    • Target

      4d0b19513986ae2c19b443cb5c889e20_NeikiAnalytics

    • Size

      94KB

    • MD5

      4d0b19513986ae2c19b443cb5c889e20

    • SHA1

      82b23a64d9eb327c930b2a53c4d911b862ba10ac

    • SHA256

      2e62c70fad803ab3ace1d9492d3f6a18d6296ce05273549579e0e2a67fe0ab66

    • SHA512

      a61668f02a754f70fa6c9d30098b0f9a65b68ad1f20d64688eadd2f923ef74bacd22fd9ac443f21f6c7e11fb820a72f69801662b7a449f12902c50d9edf98303

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJAg8dtq:ymb3NkkiQ3mdBjFIWeFGyAsJAg2q

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks