General

  • Target

    73838b6e4ffc40e7333f225149a1c550_NeikiAnalytics.exe

  • Size

    67KB

  • Sample

    240518-cj4atsfd3x

  • MD5

    73838b6e4ffc40e7333f225149a1c550

  • SHA1

    0b7747a58d7f242e15f7860f5df7cec713a329a4

  • SHA256

    c9850ed5ee0936fd1bb9105ef9a1942a1e3b9072f599ab80646da8e44ec4e049

  • SHA512

    371988a2e148b9b76cc5fbe57802f9445be51cedd291f630b25c134cba40fdce33eca84cb6dc15f7bdab69af8fedf70ba2e2209dbd8fc09b646c0ce4d39a0616

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk358nLrH:ymb3NkkiQ3mdBjFIvl358nLrH

Malware Config

Targets

    • Target

      73838b6e4ffc40e7333f225149a1c550_NeikiAnalytics.exe

    • Size

      67KB

    • MD5

      73838b6e4ffc40e7333f225149a1c550

    • SHA1

      0b7747a58d7f242e15f7860f5df7cec713a329a4

    • SHA256

      c9850ed5ee0936fd1bb9105ef9a1942a1e3b9072f599ab80646da8e44ec4e049

    • SHA512

      371988a2e148b9b76cc5fbe57802f9445be51cedd291f630b25c134cba40fdce33eca84cb6dc15f7bdab69af8fedf70ba2e2209dbd8fc09b646c0ce4d39a0616

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk358nLrH:ymb3NkkiQ3mdBjFIvl358nLrH

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks