General

  • Target

    90427f817571c738157df1314dcfdb60_NeikiAnalytics.exe

  • Size

    277KB

  • Sample

    240518-fe7n8sce79

  • MD5

    90427f817571c738157df1314dcfdb60

  • SHA1

    e7cbb97f33bbe8609aa716d20416f310773df823

  • SHA256

    b661a02574debab3798d49e66051ca4bce042df33a2a44afaab407a66d78c229

  • SHA512

    f0e69cdb64d4b9d165ce3e8e990bae5f479c6774c2c5e26c5a9229ee38cec6e22bc01efe667fc9c20fd7a4362f20d2add8c36d26a33d706a6eacdde588d7910d

  • SSDEEP

    6144:n3C9BRIG0asYFm71m8+GdkB9yMu7Vvemx:n3C9uYA71kSMuH

Malware Config

Targets

    • Target

      90427f817571c738157df1314dcfdb60_NeikiAnalytics.exe

    • Size

      277KB

    • MD5

      90427f817571c738157df1314dcfdb60

    • SHA1

      e7cbb97f33bbe8609aa716d20416f310773df823

    • SHA256

      b661a02574debab3798d49e66051ca4bce042df33a2a44afaab407a66d78c229

    • SHA512

      f0e69cdb64d4b9d165ce3e8e990bae5f479c6774c2c5e26c5a9229ee38cec6e22bc01efe667fc9c20fd7a4362f20d2add8c36d26a33d706a6eacdde588d7910d

    • SSDEEP

      6144:n3C9BRIG0asYFm71m8+GdkB9yMu7Vvemx:n3C9uYA71kSMuH

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks