General

  • Target

    8e46472e228fead7744a1ac190d531d0_NeikiAnalytics.exe

  • Size

    90KB

  • Sample

    240518-e9re3acc49

  • MD5

    8e46472e228fead7744a1ac190d531d0

  • SHA1

    8c86fbdcec42628a395dc5c71d07e19df5f79e39

  • SHA256

    2c0bf2bf4fdefeaa58d2616b0acc0e7ac84c02a78714be67653ba5774aba4f9f

  • SHA512

    6c3a4d10e36eb0359d99cef534b56da68d3666afd1bcc2a7946ce7def5aea340e4fb719c7827ae97854a1d1b62a5e58df03ca0c3b41dc1486435003f872d7463

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDodtzac0Hobv0byLufTJfJVK:ymb3NkkiQ3mdBjFodt27HobvcyLufNfm

Malware Config

Targets

    • Target

      8e46472e228fead7744a1ac190d531d0_NeikiAnalytics.exe

    • Size

      90KB

    • MD5

      8e46472e228fead7744a1ac190d531d0

    • SHA1

      8c86fbdcec42628a395dc5c71d07e19df5f79e39

    • SHA256

      2c0bf2bf4fdefeaa58d2616b0acc0e7ac84c02a78714be67653ba5774aba4f9f

    • SHA512

      6c3a4d10e36eb0359d99cef534b56da68d3666afd1bcc2a7946ce7def5aea340e4fb719c7827ae97854a1d1b62a5e58df03ca0c3b41dc1486435003f872d7463

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDodtzac0Hobv0byLufTJfJVK:ymb3NkkiQ3mdBjFodt27HobvcyLufNfm

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks