General

  • Target

    77345dbdbd55f9182e1442415f569fe0_NeikiAnalytics.exe

  • Size

    78KB

  • Sample

    240518-czfvgagb48

  • MD5

    77345dbdbd55f9182e1442415f569fe0

  • SHA1

    fa34a6d5e61434759d17feac2f0c266dd374f56c

  • SHA256

    e64fe27bd829f545ae402ac88173e87fecf7c50651ecf311d5f482644b5916af

  • SHA512

    597df400ba2bef2f4aeda86780bbf3db12b12dd907f46cef2289119a75503e1ad5aa584b250189ceaed8c02086cbcb366876bef562222e2b59f420f5ebbfd1a4

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIgJb31HgxGc+gmvZQCGq:ymb3NkkiQ3mdBjFIUb31HgxL+gmvZjz

Malware Config

Targets

    • Target

      77345dbdbd55f9182e1442415f569fe0_NeikiAnalytics.exe

    • Size

      78KB

    • MD5

      77345dbdbd55f9182e1442415f569fe0

    • SHA1

      fa34a6d5e61434759d17feac2f0c266dd374f56c

    • SHA256

      e64fe27bd829f545ae402ac88173e87fecf7c50651ecf311d5f482644b5916af

    • SHA512

      597df400ba2bef2f4aeda86780bbf3db12b12dd907f46cef2289119a75503e1ad5aa584b250189ceaed8c02086cbcb366876bef562222e2b59f420f5ebbfd1a4

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIgJb31HgxGc+gmvZQCGq:ymb3NkkiQ3mdBjFIUb31HgxL+gmvZjz

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks