General

  • Target

    5fce457718bd04b1a0aee66b5eeb6c90_NeikiAnalytics.exe

  • Size

    483KB

  • Sample

    240518-avsblabc36

  • MD5

    5fce457718bd04b1a0aee66b5eeb6c90

  • SHA1

    8f32f3b4b73c86bcad9b7301e35ee19a09bce0df

  • SHA256

    ed24f17068d0920fbaf4eadccc3c3cf4ef616ffb47704347f80f38aee628d73e

  • SHA512

    8c8e3361cd26c8a912e4effca018153b508728ddc06420e963be076318903ecd9c3bd2f77ad736054cef7a3337d90fdb301ec7764a047dee3844d365ba21f4bc

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwu1b26X1wjhtSizjV:q7Tc2NYHUrAwqzcX

Malware Config

Targets

    • Target

      5fce457718bd04b1a0aee66b5eeb6c90_NeikiAnalytics.exe

    • Size

      483KB

    • MD5

      5fce457718bd04b1a0aee66b5eeb6c90

    • SHA1

      8f32f3b4b73c86bcad9b7301e35ee19a09bce0df

    • SHA256

      ed24f17068d0920fbaf4eadccc3c3cf4ef616ffb47704347f80f38aee628d73e

    • SHA512

      8c8e3361cd26c8a912e4effca018153b508728ddc06420e963be076318903ecd9c3bd2f77ad736054cef7a3337d90fdb301ec7764a047dee3844d365ba21f4bc

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwu1b26X1wjhtSizjV:q7Tc2NYHUrAwqzcX

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks