General

  • Target

    9eecde7462127dc9ac0718a91f7024d0_NeikiAnalytics.exe

  • Size

    78KB

  • Sample

    240518-grjnlseh56

  • MD5

    9eecde7462127dc9ac0718a91f7024d0

  • SHA1

    effdda120b9ed225d77d9b73b1f4392be1431166

  • SHA256

    da0017d77f1d1fa55a43e695f835579d875509dc71cc667a5f83666437d3c437

  • SHA512

    4f8de1f437277dade32cc5dcbe88ecca6b19431d06a706d758f90a3970226ca8d82ca84a4adfcbffc84614363d8202405f9951402c81e32dc458935011b97816

  • SSDEEP

    1536:/vQBeOGtrYS3srx93UBWfwC6Ggnouy8jb5DiLKrb6MxvMnl2/Aw:/hOmTsF93UYfwC6GIoutcKbtxNd

Malware Config

Targets

    • Target

      9eecde7462127dc9ac0718a91f7024d0_NeikiAnalytics.exe

    • Size

      78KB

    • MD5

      9eecde7462127dc9ac0718a91f7024d0

    • SHA1

      effdda120b9ed225d77d9b73b1f4392be1431166

    • SHA256

      da0017d77f1d1fa55a43e695f835579d875509dc71cc667a5f83666437d3c437

    • SHA512

      4f8de1f437277dade32cc5dcbe88ecca6b19431d06a706d758f90a3970226ca8d82ca84a4adfcbffc84614363d8202405f9951402c81e32dc458935011b97816

    • SSDEEP

      1536:/vQBeOGtrYS3srx93UBWfwC6Ggnouy8jb5DiLKrb6MxvMnl2/Aw:/hOmTsF93UYfwC6GIoutcKbtxNd

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks