General

  • Target

    5a96c4b15b711cbfce95c1129a4a36c0_NeikiAnalytics.exe

  • Size

    62KB

  • Sample

    240518-ae65taac86

  • MD5

    5a96c4b15b711cbfce95c1129a4a36c0

  • SHA1

    5b8bb348b73319b198ed039711ee1d0e5e44cb74

  • SHA256

    1f33054daa1c3876b4ef202be07afa5544bef734a5897f075b6b2d738fc94baa

  • SHA512

    cac3a6ff3aaaad91c5314315e22c2972add339806db323a0b790922e66765b6bc59c475aef7a37ece6f6dd7984959c766592f057c7b2ba6f4ab798573051afb2

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDII9ZvHKE+:ymb3NkkiQ3mdBjFII9ZvHKE+

Malware Config

Targets

    • Target

      5a96c4b15b711cbfce95c1129a4a36c0_NeikiAnalytics.exe

    • Size

      62KB

    • MD5

      5a96c4b15b711cbfce95c1129a4a36c0

    • SHA1

      5b8bb348b73319b198ed039711ee1d0e5e44cb74

    • SHA256

      1f33054daa1c3876b4ef202be07afa5544bef734a5897f075b6b2d738fc94baa

    • SHA512

      cac3a6ff3aaaad91c5314315e22c2972add339806db323a0b790922e66765b6bc59c475aef7a37ece6f6dd7984959c766592f057c7b2ba6f4ab798573051afb2

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDII9ZvHKE+:ymb3NkkiQ3mdBjFII9ZvHKE+

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks