General

  • Target

    612850007478366bb97066bde6b7b620_NeikiAnalytics.exe

  • Size

    66KB

  • Sample

    240518-a1bk2abe58

  • MD5

    612850007478366bb97066bde6b7b620

  • SHA1

    5af50155b9e7c290e8ac50aeda025e138ccf778a

  • SHA256

    09052bd2cb1cdd4703149487ae950f9ba7d3ef78ae7fc2c6fc2ef357208fbf37

  • SHA512

    d4c72e44ecb310844a55961e2486e57ca12332de36c93e520e681b9eb968225bdec2dd3213056482e2f2bbe46e97e5cd4deb4b96f3a778f45423687cd2be0ff6

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIx:ymb3NkkiQ3mdBjFIFdJ8bz

Malware Config

Targets

    • Target

      612850007478366bb97066bde6b7b620_NeikiAnalytics.exe

    • Size

      66KB

    • MD5

      612850007478366bb97066bde6b7b620

    • SHA1

      5af50155b9e7c290e8ac50aeda025e138ccf778a

    • SHA256

      09052bd2cb1cdd4703149487ae950f9ba7d3ef78ae7fc2c6fc2ef357208fbf37

    • SHA512

      d4c72e44ecb310844a55961e2486e57ca12332de36c93e520e681b9eb968225bdec2dd3213056482e2f2bbe46e97e5cd4deb4b96f3a778f45423687cd2be0ff6

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIFdJUDbAIx:ymb3NkkiQ3mdBjFIFdJ8bz

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks