General

  • Target

    97cc6ecc8f9caf1d71bc9132d71e5b40_NeikiAnalytics.exe

  • Size

    93KB

  • Sample

    240518-f5fnfadg55

  • MD5

    97cc6ecc8f9caf1d71bc9132d71e5b40

  • SHA1

    e69792cf3228b7545798a273e79e5b9c2032b85c

  • SHA256

    2b02aa2dc2200b6960d79f0b670865d61fbfee1330a9f3e877468baf87c6e161

  • SHA512

    2ee99cd684310b8d9181c1b20aa8da223e6f767e11b2ac41925a718dad4c208714f22aa4f02cb93bfae7ae86b2d06359d6b2161c0e5a6e83b4881bbf76fddb35

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoLuePjDYlR3hnjKXIQSe9oEY:ymb3NkkiQ3mdBjFoLucjDilOZhod

Malware Config

Targets

    • Target

      97cc6ecc8f9caf1d71bc9132d71e5b40_NeikiAnalytics.exe

    • Size

      93KB

    • MD5

      97cc6ecc8f9caf1d71bc9132d71e5b40

    • SHA1

      e69792cf3228b7545798a273e79e5b9c2032b85c

    • SHA256

      2b02aa2dc2200b6960d79f0b670865d61fbfee1330a9f3e877468baf87c6e161

    • SHA512

      2ee99cd684310b8d9181c1b20aa8da223e6f767e11b2ac41925a718dad4c208714f22aa4f02cb93bfae7ae86b2d06359d6b2161c0e5a6e83b4881bbf76fddb35

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoLuePjDYlR3hnjKXIQSe9oEY:ymb3NkkiQ3mdBjFoLucjDilOZhod

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks