General

  • Target

    e55ece65745fccabbbbfa81853f8a3e0_NeikiAnalytics.exe

  • Size

    82KB

  • Sample

    240518-s6s2daag3y

  • MD5

    e55ece65745fccabbbbfa81853f8a3e0

  • SHA1

    e0b99a8d492eecdbdc29ba7e8d95be533e1a19d4

  • SHA256

    3fc527fb150337b113262b2ddc7917df8f56ca9ad70938d42602d79e885a6334

  • SHA512

    84461604f9748de3d34572b137b8e70a8b6da7b2a3767e516511d2af279f929a9b64061e77f06af371cdad43ee1024d0e350976f4d704a8fdcd0ec90bc02c266

  • SSDEEP

    1536:CvQBeOGtrYS3srx93UBWfwC6Ggnouy8AelS7/7VIQH2s:ChOmTsF93UYfwC6GIoutAe07zVIqF

Malware Config

Targets

    • Target

      e55ece65745fccabbbbfa81853f8a3e0_NeikiAnalytics.exe

    • Size

      82KB

    • MD5

      e55ece65745fccabbbbfa81853f8a3e0

    • SHA1

      e0b99a8d492eecdbdc29ba7e8d95be533e1a19d4

    • SHA256

      3fc527fb150337b113262b2ddc7917df8f56ca9ad70938d42602d79e885a6334

    • SHA512

      84461604f9748de3d34572b137b8e70a8b6da7b2a3767e516511d2af279f929a9b64061e77f06af371cdad43ee1024d0e350976f4d704a8fdcd0ec90bc02c266

    • SSDEEP

      1536:CvQBeOGtrYS3srx93UBWfwC6Ggnouy8AelS7/7VIQH2s:ChOmTsF93UYfwC6GIoutAe07zVIqF

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks