General

  • Target

    59e4b07051bb4d3b9e8af408fb93c4f0_NeikiAnalytics.exe

  • Size

    63KB

  • Sample

    240518-aczb7aac2s

  • MD5

    59e4b07051bb4d3b9e8af408fb93c4f0

  • SHA1

    1e9c9d3cfe41831b1831dd194e38e1de2890ac14

  • SHA256

    4aebeb5f577101a125eb8e66f52ef0519d5223b5c4cb5245a9607ad10bf78254

  • SHA512

    587ba2e960b70a78269f50923e188f158390257bbb2af89c6d1a8882d4df105b84c1aaacba6c3754468c61e7879682a9646344bdff97cfddb1aa2c8a704beed4

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIhJm/ww:ymb3NkkiQ3mdBjFILmf

Malware Config

Targets

    • Target

      59e4b07051bb4d3b9e8af408fb93c4f0_NeikiAnalytics.exe

    • Size

      63KB

    • MD5

      59e4b07051bb4d3b9e8af408fb93c4f0

    • SHA1

      1e9c9d3cfe41831b1831dd194e38e1de2890ac14

    • SHA256

      4aebeb5f577101a125eb8e66f52ef0519d5223b5c4cb5245a9607ad10bf78254

    • SHA512

      587ba2e960b70a78269f50923e188f158390257bbb2af89c6d1a8882d4df105b84c1aaacba6c3754468c61e7879682a9646344bdff97cfddb1aa2c8a704beed4

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIhJm/ww:ymb3NkkiQ3mdBjFILmf

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks