General

  • Target

    2f52f1e2b796c2bae7dfe34789d23aa0_NeikiAnalytics

  • Size

    90KB

  • Sample

    240511-x8wbqsdg4w

  • MD5

    2f52f1e2b796c2bae7dfe34789d23aa0

  • SHA1

    653bd51311812ba17c1033facc02e97c121e35fd

  • SHA256

    f3692658f708f809fc12f0b79a0ed23b69a254417f3dbfc70e273966848567d4

  • SHA512

    61a4a75edb257bb8d7739173584d5b9b9baae1d04222431beb62bd43088689931520dab361620d891bae4938a61d6e192496a246cbd6d2e038eef58204fa7b5d

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDodtzac0Hobv0byLufTJfJVM:ymb3NkkiQ3mdBjFodt27HobvcyLufNfo

Malware Config

Targets

    • Target

      2f52f1e2b796c2bae7dfe34789d23aa0_NeikiAnalytics

    • Size

      90KB

    • MD5

      2f52f1e2b796c2bae7dfe34789d23aa0

    • SHA1

      653bd51311812ba17c1033facc02e97c121e35fd

    • SHA256

      f3692658f708f809fc12f0b79a0ed23b69a254417f3dbfc70e273966848567d4

    • SHA512

      61a4a75edb257bb8d7739173584d5b9b9baae1d04222431beb62bd43088689931520dab361620d891bae4938a61d6e192496a246cbd6d2e038eef58204fa7b5d

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDodtzac0Hobv0byLufTJfJVM:ymb3NkkiQ3mdBjFodt27HobvcyLufNfo

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks