General

  • Target

    58410555a5da15a9e7ad339f6fe6a020_NeikiAnalytics.exe

  • Size

    58KB

  • Sample

    240517-3zycmahh7s

  • MD5

    58410555a5da15a9e7ad339f6fe6a020

  • SHA1

    a4af7b879da8a360e9d2d4cc2cb91bd2ed4cec7f

  • SHA256

    59608ee3ddd20c30cec71cbb0831c1c44472bd01f20b7a081bb767ce45b682ea

  • SHA512

    b07ee1b2dd4a63541819ffca14e2a0bbf9e482ad04ec383556568960dcce9159e2c94f468dfb252e8bb8d0398a8ea3c6b225d62b66f9660ee0f4cf0a0dc6cfec

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIm2hn:ymb3NkkiQ3mdBjFIsIrhn

Malware Config

Targets

    • Target

      58410555a5da15a9e7ad339f6fe6a020_NeikiAnalytics.exe

    • Size

      58KB

    • MD5

      58410555a5da15a9e7ad339f6fe6a020

    • SHA1

      a4af7b879da8a360e9d2d4cc2cb91bd2ed4cec7f

    • SHA256

      59608ee3ddd20c30cec71cbb0831c1c44472bd01f20b7a081bb767ce45b682ea

    • SHA512

      b07ee1b2dd4a63541819ffca14e2a0bbf9e482ad04ec383556568960dcce9159e2c94f468dfb252e8bb8d0398a8ea3c6b225d62b66f9660ee0f4cf0a0dc6cfec

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsIm2hn:ymb3NkkiQ3mdBjFIsIrhn

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks