General

  • Target

    97f87fcdf4572b92a02ea30b18b14240_NeikiAnalytics.exe

  • Size

    79KB

  • Sample

    240518-f51cvadg2w

  • MD5

    97f87fcdf4572b92a02ea30b18b14240

  • SHA1

    8cdc3b1ddec0425fe3d8e556b0008fce692fd82a

  • SHA256

    9971071c9d1be8547f9dff519f94c2c9b8ca8d99dc715d367e889accbfb70006

  • SHA512

    76f92b3ef600871388be8a0748d18b149acf40a0ac056217dde0455e1709da7db434fb3c31a41c259d73cc86bb9bd28984e7bf760cad0cd8884d1bd154c9a086

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDWiekja1br3GGBxfot3e2k5Eh:ymb3NkkiQ3mdBjFWXkj7afoI2L

Malware Config

Targets

    • Target

      97f87fcdf4572b92a02ea30b18b14240_NeikiAnalytics.exe

    • Size

      79KB

    • MD5

      97f87fcdf4572b92a02ea30b18b14240

    • SHA1

      8cdc3b1ddec0425fe3d8e556b0008fce692fd82a

    • SHA256

      9971071c9d1be8547f9dff519f94c2c9b8ca8d99dc715d367e889accbfb70006

    • SHA512

      76f92b3ef600871388be8a0748d18b149acf40a0ac056217dde0455e1709da7db434fb3c31a41c259d73cc86bb9bd28984e7bf760cad0cd8884d1bd154c9a086

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDWiekja1br3GGBxfot3e2k5Eh:ymb3NkkiQ3mdBjFWXkj7afoI2L

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks