General

  • Target

    722b89973c2f592da834a5ca0c998bd0_NeikiAnalytics.exe

  • Size

    114KB

  • Sample

    240518-cfmhxafb7w

  • MD5

    722b89973c2f592da834a5ca0c998bd0

  • SHA1

    fc482ddd2e3d6a81cfe57138a0340399667ee066

  • SHA256

    ca3296285427b0b75cf83eaca8197aa04c8043867fd6a8c9c3b7749d9d1a6c2b

  • SHA512

    577997c98ef2fac0cdac08953b936ba5e4a74601238ab4cf214d1b6eac16ca0d11dd9210abe278e95ea4012bd2e19e6f681ac6d536a9c83c7036c26d0d6f1c74

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73oYUCD7R2F2UVbyy0Nc:ymb3NkkiQ3mdBjFo73HUoMsAbrn

Malware Config

Targets

    • Target

      722b89973c2f592da834a5ca0c998bd0_NeikiAnalytics.exe

    • Size

      114KB

    • MD5

      722b89973c2f592da834a5ca0c998bd0

    • SHA1

      fc482ddd2e3d6a81cfe57138a0340399667ee066

    • SHA256

      ca3296285427b0b75cf83eaca8197aa04c8043867fd6a8c9c3b7749d9d1a6c2b

    • SHA512

      577997c98ef2fac0cdac08953b936ba5e4a74601238ab4cf214d1b6eac16ca0d11dd9210abe278e95ea4012bd2e19e6f681ac6d536a9c83c7036c26d0d6f1c74

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73oYUCD7R2F2UVbyy0Nc:ymb3NkkiQ3mdBjFo73HUoMsAbrn

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks