General

  • Target

    96268df6d0edbe5ae1b1f0891bd192e0_NeikiAnalytics.exe

  • Size

    89KB

  • Sample

    240518-fy6laadd9x

  • MD5

    96268df6d0edbe5ae1b1f0891bd192e0

  • SHA1

    23cd4cb082ff33c2e3e6bf61a42edbb0f880fd08

  • SHA256

    1109761d915168672c744d60bb6de63e91e43a24e6a5a3f969ee6e2db70cb7f2

  • SHA512

    4326d40c9f0f0f4835ac59554148faae2465fd3bcaad4db6decfe600f87e48f691964e74602a6888143b638e11dbc40dc13c857a0a41edb05e1b8921efcf6a87

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDISoFGDvPGB1haZJOzS:ymb3NkkiQ3mdBjFIk7+czv

Malware Config

Targets

    • Target

      96268df6d0edbe5ae1b1f0891bd192e0_NeikiAnalytics.exe

    • Size

      89KB

    • MD5

      96268df6d0edbe5ae1b1f0891bd192e0

    • SHA1

      23cd4cb082ff33c2e3e6bf61a42edbb0f880fd08

    • SHA256

      1109761d915168672c744d60bb6de63e91e43a24e6a5a3f969ee6e2db70cb7f2

    • SHA512

      4326d40c9f0f0f4835ac59554148faae2465fd3bcaad4db6decfe600f87e48f691964e74602a6888143b638e11dbc40dc13c857a0a41edb05e1b8921efcf6a87

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDISoFGDvPGB1haZJOzS:ymb3NkkiQ3mdBjFIk7+czv

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks