General

  • Target

    a0fdd2fec7e2e2f1ccc7a5309a0b7620_NeikiAnalytics.exe

  • Size

    79KB

  • Sample

    240518-gz25xsfd29

  • MD5

    a0fdd2fec7e2e2f1ccc7a5309a0b7620

  • SHA1

    f74da41d08c5c81f067f257d58b70039dea4e7aa

  • SHA256

    fc0966762b9bb96ee73ece34a5e6a0fdc14c992014f804f0a4762859926ae43f

  • SHA512

    615381dfc0ad2910ee4ea7bd29f3fd09177074db780fc21e2ffdfc98394d58c39bf8bf7915e91f05d5aaae63d7d442102b7ec0b45b25ad948e00c3750bb45aac

  • SSDEEP

    1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6T7a:zhOmTsF93UYfwC6GIoutiTU2HVS63a

Malware Config

Targets

    • Target

      a0fdd2fec7e2e2f1ccc7a5309a0b7620_NeikiAnalytics.exe

    • Size

      79KB

    • MD5

      a0fdd2fec7e2e2f1ccc7a5309a0b7620

    • SHA1

      f74da41d08c5c81f067f257d58b70039dea4e7aa

    • SHA256

      fc0966762b9bb96ee73ece34a5e6a0fdc14c992014f804f0a4762859926ae43f

    • SHA512

      615381dfc0ad2910ee4ea7bd29f3fd09177074db780fc21e2ffdfc98394d58c39bf8bf7915e91f05d5aaae63d7d442102b7ec0b45b25ad948e00c3750bb45aac

    • SSDEEP

      1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6T7a:zhOmTsF93UYfwC6GIoutiTU2HVS63a

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks