General

  • Target

    6f20476aac3b7081fabb034df1831b10_NeikiAnalytics.exe

  • Size

    94KB

  • Sample

    240518-b8es4aee96

  • MD5

    6f20476aac3b7081fabb034df1831b10

  • SHA1

    90705224d3ffb05307bbf577fb91d33424ba4ae3

  • SHA256

    8a85048912ebdaa42d8f81ec0fbd75d66bc33f1a4c031eb84080073bdf7db5a5

  • SHA512

    767500bc38203b1727855e19db5ebac3d21dc84843448ee4b1db4523242c5b105198e6edd457ab74803450abf032d34efb424f316ddf597b6896198a6a063440

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIS7/b9EUeWpEC3alBlwtn8BLnnZ:ymb3NkkiQ3mdBjFIi/REUZnKlbnZ

Malware Config

Targets

    • Target

      6f20476aac3b7081fabb034df1831b10_NeikiAnalytics.exe

    • Size

      94KB

    • MD5

      6f20476aac3b7081fabb034df1831b10

    • SHA1

      90705224d3ffb05307bbf577fb91d33424ba4ae3

    • SHA256

      8a85048912ebdaa42d8f81ec0fbd75d66bc33f1a4c031eb84080073bdf7db5a5

    • SHA512

      767500bc38203b1727855e19db5ebac3d21dc84843448ee4b1db4523242c5b105198e6edd457ab74803450abf032d34efb424f316ddf597b6896198a6a063440

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIS7/b9EUeWpEC3alBlwtn8BLnnZ:ymb3NkkiQ3mdBjFIi/REUZnKlbnZ

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks