General

  • Target

    5881818d7d6fc9b249bc0deef2d17890_NeikiAnalytics.exe

  • Size

    345KB

  • Sample

    240517-31mbrahh76

  • MD5

    5881818d7d6fc9b249bc0deef2d17890

  • SHA1

    2ddb3b579a0362dc9e3a0fb1d3a1d570fa784fd0

  • SHA256

    31fd14b052fd419619b466bada6ac1c89e8bf04b1fdf3b0cc49872ee31f0d99e

  • SHA512

    09330d07ac43f27805849217ff6b3ab04e46b3f264e0415d66fd04910283970a4db970c6d3564109cf2f9d16da069ee0d9e5e60cbc2033e150de954a06908307

  • SSDEEP

    6144:n3C9BRo/AIX2MUXownfWQkyCpxwJz9e0pQowLh3EhToK9cT085mnFhXjmnwJQyIY:n3C9uDnUXoSWlnwJv90aKToFqwfIBm

Malware Config

Targets

    • Target

      5881818d7d6fc9b249bc0deef2d17890_NeikiAnalytics.exe

    • Size

      345KB

    • MD5

      5881818d7d6fc9b249bc0deef2d17890

    • SHA1

      2ddb3b579a0362dc9e3a0fb1d3a1d570fa784fd0

    • SHA256

      31fd14b052fd419619b466bada6ac1c89e8bf04b1fdf3b0cc49872ee31f0d99e

    • SHA512

      09330d07ac43f27805849217ff6b3ab04e46b3f264e0415d66fd04910283970a4db970c6d3564109cf2f9d16da069ee0d9e5e60cbc2033e150de954a06908307

    • SSDEEP

      6144:n3C9BRo/AIX2MUXownfWQkyCpxwJz9e0pQowLh3EhToK9cT085mnFhXjmnwJQyIY:n3C9uDnUXoSWlnwJv90aKToFqwfIBm

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks