General

  • Target

    6f91a9ddd88c75a9853a9dc73ecf1ff0_NeikiAnalytics.exe

  • Size

    95KB

  • Sample

    240518-b882yaef52

  • MD5

    6f91a9ddd88c75a9853a9dc73ecf1ff0

  • SHA1

    4afa5cc1c37dc058b6eb01fdf8ed1d571f535a07

  • SHA256

    e7368ac0630a7fb866f9eb77d0356c30e898e31059c24e4f9983115991dcf8df

  • SHA512

    a43af2afcd8e91017ab1eaf1c46db954667dc95b44151cbcc1cee6a0d2dfb00d5cee92193d7ead191953013274050ec8f81ba9309570cdd6cd317df957b93ffb

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpi+qP1hvZo66Ox4oq2SQwfTQ1:ymb3NkkiQ3mdBjFIj+qNhvZuHQY01

Malware Config

Targets

    • Target

      6f91a9ddd88c75a9853a9dc73ecf1ff0_NeikiAnalytics.exe

    • Size

      95KB

    • MD5

      6f91a9ddd88c75a9853a9dc73ecf1ff0

    • SHA1

      4afa5cc1c37dc058b6eb01fdf8ed1d571f535a07

    • SHA256

      e7368ac0630a7fb866f9eb77d0356c30e898e31059c24e4f9983115991dcf8df

    • SHA512

      a43af2afcd8e91017ab1eaf1c46db954667dc95b44151cbcc1cee6a0d2dfb00d5cee92193d7ead191953013274050ec8f81ba9309570cdd6cd317df957b93ffb

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpi+qP1hvZo66Ox4oq2SQwfTQ1:ymb3NkkiQ3mdBjFIj+qNhvZuHQY01

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks