General

  • Target

    739239cd97c30ff48244413eedc64650_NeikiAnalytics.exe

  • Size

    95KB

  • Sample

    240518-cj94dafc95

  • MD5

    739239cd97c30ff48244413eedc64650

  • SHA1

    bc3abe6570521eacbee57eba4441ce33c5360422

  • SHA256

    199cf3657cdb4bfe252f11d1ae2b24caddffa8904f5f5a913c1d0adda24410af

  • SHA512

    d16714740c78bb0da04fe2ab5ff945b0381df9ac563f062c06abc96a1a7a125776e1735a4a7ae9c76c169d542ba80143e96572b8b698fc3f06ae036d15e3100e

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxEPOfPrAi:ymb3NkkiQ3mdBjFo73PYP1lri3KuOnr9

Malware Config

Targets

    • Target

      739239cd97c30ff48244413eedc64650_NeikiAnalytics.exe

    • Size

      95KB

    • MD5

      739239cd97c30ff48244413eedc64650

    • SHA1

      bc3abe6570521eacbee57eba4441ce33c5360422

    • SHA256

      199cf3657cdb4bfe252f11d1ae2b24caddffa8904f5f5a913c1d0adda24410af

    • SHA512

      d16714740c78bb0da04fe2ab5ff945b0381df9ac563f062c06abc96a1a7a125776e1735a4a7ae9c76c169d542ba80143e96572b8b698fc3f06ae036d15e3100e

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxEPOfPrAi:ymb3NkkiQ3mdBjFo73PYP1lri3KuOnr9

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks