General

  • Target

    93b43467cbbf2dc747cc7831af2f51e0_NeikiAnalytics.exe

  • Size

    95KB

  • Sample

    240518-fqesladb23

  • MD5

    93b43467cbbf2dc747cc7831af2f51e0

  • SHA1

    bcadb1be012ecbe674cfe7af7c6b1e8e335a4393

  • SHA256

    94538e713047255bc59148e7c7301d4375bb23cb15c2310db99332ec4c609f71

  • SHA512

    9fd0b84cf08929463edec7e591055ac1dc0a54eb13e276bed2bbe2961f8d1d15e2d36eb0da073b1787403b1fd75b6fac94e36982178672a76c303180202cf8b3

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxS1rj/2Cl:ymb3NkkiQ3mdBjFo73PYP1lri3K8Gwy4

Malware Config

Targets

    • Target

      93b43467cbbf2dc747cc7831af2f51e0_NeikiAnalytics.exe

    • Size

      95KB

    • MD5

      93b43467cbbf2dc747cc7831af2f51e0

    • SHA1

      bcadb1be012ecbe674cfe7af7c6b1e8e335a4393

    • SHA256

      94538e713047255bc59148e7c7301d4375bb23cb15c2310db99332ec4c609f71

    • SHA512

      9fd0b84cf08929463edec7e591055ac1dc0a54eb13e276bed2bbe2961f8d1d15e2d36eb0da073b1787403b1fd75b6fac94e36982178672a76c303180202cf8b3

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxS1rj/2Cl:ymb3NkkiQ3mdBjFo73PYP1lri3K8Gwy4

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks