General

  • Target

    75d925408b1f605264104a454b473110_NeikiAnalytics.exe

  • Size

    78KB

  • Sample

    240518-cs6sbafg89

  • MD5

    75d925408b1f605264104a454b473110

  • SHA1

    020c6ddac04e54c215e66b460613096ff1b850bd

  • SHA256

    b70394bb3ed5bee34bd388558e9cd38cca3828b03219e5cf7b4e9bef7abcd5db

  • SHA512

    73b011e088c23d760341575f3c015439c0e3d2ea7a24579199c4a51aea1a8bcf8794b22414b77babc209cc9ce0b841e719fe5827e8067fc1aff49af333d15de4

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAX8YieVIJclPvPJtcdcU:ymb3NkkiQ3mdBjFo68YBVIJc9JtxU

Malware Config

Targets

    • Target

      75d925408b1f605264104a454b473110_NeikiAnalytics.exe

    • Size

      78KB

    • MD5

      75d925408b1f605264104a454b473110

    • SHA1

      020c6ddac04e54c215e66b460613096ff1b850bd

    • SHA256

      b70394bb3ed5bee34bd388558e9cd38cca3828b03219e5cf7b4e9bef7abcd5db

    • SHA512

      73b011e088c23d760341575f3c015439c0e3d2ea7a24579199c4a51aea1a8bcf8794b22414b77babc209cc9ce0b841e719fe5827e8067fc1aff49af333d15de4

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAX8YieVIJclPvPJtcdcU:ymb3NkkiQ3mdBjFo68YBVIJc9JtxU

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks