General

  • Target

    72d5ec506c9f86262ea7212319184040_NeikiAnalytics.exe

  • Size

    201KB

  • Sample

    240518-cg2zzsfb86

  • MD5

    72d5ec506c9f86262ea7212319184040

  • SHA1

    7eb4f8da175b2c5125248d90df94989305650a5d

  • SHA256

    15ce793c93aeb0e8e1faf73594deb1e49ebd3a1571562c20a59750277847af32

  • SHA512

    4c65db7976cc3d51f681bb559ca1f0ff8c3161d25a982838246a47821a39d028819b7c7e746032170c020464db7b995b1304ec4ea2c6d8b58a84954f33b5b665

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFIi/0RU6QeYQsm71vPmc51+GqekBJCvr6zJBUVv1Tot:n3C9BRIG0asYFm71m8+GdkB9Cv1Ut

Malware Config

Targets

    • Target

      72d5ec506c9f86262ea7212319184040_NeikiAnalytics.exe

    • Size

      201KB

    • MD5

      72d5ec506c9f86262ea7212319184040

    • SHA1

      7eb4f8da175b2c5125248d90df94989305650a5d

    • SHA256

      15ce793c93aeb0e8e1faf73594deb1e49ebd3a1571562c20a59750277847af32

    • SHA512

      4c65db7976cc3d51f681bb559ca1f0ff8c3161d25a982838246a47821a39d028819b7c7e746032170c020464db7b995b1304ec4ea2c6d8b58a84954f33b5b665

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFIi/0RU6QeYQsm71vPmc51+GqekBJCvr6zJBUVv1Tot:n3C9BRIG0asYFm71m8+GdkB9Cv1Ut

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks