General

  • Target

    922318b2d251eaf14e953b39b7dc1e40_NeikiAnalytics.exe

  • Size

    86KB

  • Sample

    240518-fkva4acg5z

  • MD5

    922318b2d251eaf14e953b39b7dc1e40

  • SHA1

    28ef3a90f9ef0ee944798a6585c7eebda743a582

  • SHA256

    709ee69d3ba964c1414e92c6834f49b180e0373f2d1cf694f6c7d234802f3104

  • SHA512

    fcb075aa1d5ba998e556db8a856b6cc8c3f83d76ddf9ed24205209f3d29dd08fd0fb4de03a5c1f9b1dba01e9d8f5a799201f9fec48369f613e6b728c54c1e454

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2wV3jaCJ5jH3en:ymb3NkkiQ3mdBjF+3TU2K3bJZXc

Malware Config

Targets

    • Target

      922318b2d251eaf14e953b39b7dc1e40_NeikiAnalytics.exe

    • Size

      86KB

    • MD5

      922318b2d251eaf14e953b39b7dc1e40

    • SHA1

      28ef3a90f9ef0ee944798a6585c7eebda743a582

    • SHA256

      709ee69d3ba964c1414e92c6834f49b180e0373f2d1cf694f6c7d234802f3104

    • SHA512

      fcb075aa1d5ba998e556db8a856b6cc8c3f83d76ddf9ed24205209f3d29dd08fd0fb4de03a5c1f9b1dba01e9d8f5a799201f9fec48369f613e6b728c54c1e454

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2wV3jaCJ5jH3en:ymb3NkkiQ3mdBjF+3TU2K3bJZXc

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks