General

  • Target

    bfcc09368ed99958968933ed3065fa40_NeikiAnalytics

  • Size

    94KB

  • Sample

    240513-v1tf3agb94

  • MD5

    bfcc09368ed99958968933ed3065fa40

  • SHA1

    c3ea9a6c8ba17149e1ee83e4f6fdae6c46ef03b1

  • SHA256

    79c73d8395a231a586d5e6b8c144a021443d4ef1a4e8335a1eceb1d1dc982021

  • SHA512

    691ebdda08f6d48bbe0dcc77f260bd7864690f98c33dfff251e487cf15566094e93bca8c5c12d7f0ad1607ef3878336fc880267014c4cad38b6ec1bce310f152

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxEPOfPrA2:ymb3NkkiQ3mdBjFo73PYP1lri3KuOnrL

Malware Config

Targets

    • Target

      bfcc09368ed99958968933ed3065fa40_NeikiAnalytics

    • Size

      94KB

    • MD5

      bfcc09368ed99958968933ed3065fa40

    • SHA1

      c3ea9a6c8ba17149e1ee83e4f6fdae6c46ef03b1

    • SHA256

      79c73d8395a231a586d5e6b8c144a021443d4ef1a4e8335a1eceb1d1dc982021

    • SHA512

      691ebdda08f6d48bbe0dcc77f260bd7864690f98c33dfff251e487cf15566094e93bca8c5c12d7f0ad1607ef3878336fc880267014c4cad38b6ec1bce310f152

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxEPOfPrA2:ymb3NkkiQ3mdBjFo73PYP1lri3KuOnrL

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks