General

  • Target

    60a823dcd28bc08ce79d8af69d61e220_NeikiAnalytics.exe

  • Size

    60KB

  • Sample

    240518-ayevnsbd8v

  • MD5

    60a823dcd28bc08ce79d8af69d61e220

  • SHA1

    f063d21438737599cb07eeaf84a110e769912dfb

  • SHA256

    47bf41552b35fbec14ceaec7bb6670d6f466027a04444256a7691a065189c9bd

  • SHA512

    43b9f162ad050c2a0363f7fe380ebe511ea7720e67ca4d55321cb9ac7984a0cffe1ee51d15dab5b899e91daf353647103e8de9d080fd2d3bee23b10507b3fe66

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27K:ymb3NkkiQ3mdBjFI9/

Malware Config

Targets

    • Target

      60a823dcd28bc08ce79d8af69d61e220_NeikiAnalytics.exe

    • Size

      60KB

    • MD5

      60a823dcd28bc08ce79d8af69d61e220

    • SHA1

      f063d21438737599cb07eeaf84a110e769912dfb

    • SHA256

      47bf41552b35fbec14ceaec7bb6670d6f466027a04444256a7691a065189c9bd

    • SHA512

      43b9f162ad050c2a0363f7fe380ebe511ea7720e67ca4d55321cb9ac7984a0cffe1ee51d15dab5b899e91daf353647103e8de9d080fd2d3bee23b10507b3fe66

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27K:ymb3NkkiQ3mdBjFI9/

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks