General

  • Target

    5bc4fdc0731275d6797c67692c1daab0_NeikiAnalytics.exe

  • Size

    80KB

  • Sample

    240518-ajbjpsae7x

  • MD5

    5bc4fdc0731275d6797c67692c1daab0

  • SHA1

    3b2d8b18c3f1ecd6fe2bbd4e85246d794407c3b7

  • SHA256

    1cbfce22308ea07dcbcc47d903d7b29442dc19f08a1739101e20c6e5c1525230

  • SHA512

    83815f7d1de0323e206c7020323606b39648e3e03a27e1632fb4756a57a10dcd36752eb51001c75a3ef713376945011a0fb81275af0b8b0b55c42d1ef45d42c5

  • SSDEEP

    1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6T7QQ:zhOmTsF93UYfwC6GIoutiTU2HVS63QQ

Malware Config

Targets

    • Target

      5bc4fdc0731275d6797c67692c1daab0_NeikiAnalytics.exe

    • Size

      80KB

    • MD5

      5bc4fdc0731275d6797c67692c1daab0

    • SHA1

      3b2d8b18c3f1ecd6fe2bbd4e85246d794407c3b7

    • SHA256

      1cbfce22308ea07dcbcc47d903d7b29442dc19f08a1739101e20c6e5c1525230

    • SHA512

      83815f7d1de0323e206c7020323606b39648e3e03a27e1632fb4756a57a10dcd36752eb51001c75a3ef713376945011a0fb81275af0b8b0b55c42d1ef45d42c5

    • SSDEEP

      1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6T7QQ:zhOmTsF93UYfwC6GIoutiTU2HVS63QQ

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks