General

  • Target

    76e8ad968b3a336c27747a4e948e3490_NeikiAnalytics.exe

  • Size

    95KB

  • Sample

    240518-cyq9tagb3x

  • MD5

    76e8ad968b3a336c27747a4e948e3490

  • SHA1

    977efe60ed98dc15fe15f188f451c0df2db2e948

  • SHA256

    a1d08fcad89ce489d3a2e3b2b1db9e8d0c4f30d6dd565f2a43cca87f75e2ca2b

  • SHA512

    f04b61e0ffbe4c396fdf76cd0d297393aff84d19ab8e9888ac6d3cac35a0fbde3b861eb442225723901d00e123bf008589448277cd795d88e43a342341f3a12c

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxEPOfPrAT:ymb3NkkiQ3mdBjFo73PYP1lri3KuOnr2

Malware Config

Targets

    • Target

      76e8ad968b3a336c27747a4e948e3490_NeikiAnalytics.exe

    • Size

      95KB

    • MD5

      76e8ad968b3a336c27747a4e948e3490

    • SHA1

      977efe60ed98dc15fe15f188f451c0df2db2e948

    • SHA256

      a1d08fcad89ce489d3a2e3b2b1db9e8d0c4f30d6dd565f2a43cca87f75e2ca2b

    • SHA512

      f04b61e0ffbe4c396fdf76cd0d297393aff84d19ab8e9888ac6d3cac35a0fbde3b861eb442225723901d00e123bf008589448277cd795d88e43a342341f3a12c

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxEPOfPrAT:ymb3NkkiQ3mdBjFo73PYP1lri3KuOnr2

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks