General

  • Target

    d62ba7c03d62f7fdf942d1cec53217a0_NeikiAnalytics.exe

  • Size

    86KB

  • Sample

    240518-rnqb4aff53

  • MD5

    d62ba7c03d62f7fdf942d1cec53217a0

  • SHA1

    9011653a96c96652036e10dd087ddf2d28b50ea6

  • SHA256

    a66e59bc5698ac3b491fac5d38e09ffb688d8d5b7da70d5225d63fd397a8d9a5

  • SHA512

    c4d7aec33ef7187f39c878638cf8cfcb0af12e3df66e72fe0aa68a0ed79c3a1b6107a7e75647f5635d7a396fcfa0158245c34a20f3a7a8c9fe5379245912f86f

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MlYqn+jMp9jXXS:ymb3NkkiQ3mdBjFo73tvn+Yp9jnS

Malware Config

Targets

    • Target

      d62ba7c03d62f7fdf942d1cec53217a0_NeikiAnalytics.exe

    • Size

      86KB

    • MD5

      d62ba7c03d62f7fdf942d1cec53217a0

    • SHA1

      9011653a96c96652036e10dd087ddf2d28b50ea6

    • SHA256

      a66e59bc5698ac3b491fac5d38e09ffb688d8d5b7da70d5225d63fd397a8d9a5

    • SHA512

      c4d7aec33ef7187f39c878638cf8cfcb0af12e3df66e72fe0aa68a0ed79c3a1b6107a7e75647f5635d7a396fcfa0158245c34a20f3a7a8c9fe5379245912f86f

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MlYqn+jMp9jXXS:ymb3NkkiQ3mdBjFo73tvn+Yp9jnS

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks