General

  • Target

    dd9c431fe2b7410fef9f665507e98d50_NeikiAnalytics.exe

  • Size

    76KB

  • Sample

    240518-sek7fsha7w

  • MD5

    dd9c431fe2b7410fef9f665507e98d50

  • SHA1

    e0ebb190a7ad5aa55bc57d566dc6b3ed36d2dee2

  • SHA256

    827151585e870ca38cc0a2b9a20f8d925d06b5d7a4f424e98aee6ad3d3c29362

  • SHA512

    d6550b0b79af8ab742a1f6185586d0ab779c432fca66dd89ffa2a34877e432351cd211e421c2a1586472843ea77b991b5092048f27edff0de65c6da458ed08fb

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2wVEJW:ymb3NkkiQ3mdBjF+3TU2KEJW

Malware Config

Targets

    • Target

      dd9c431fe2b7410fef9f665507e98d50_NeikiAnalytics.exe

    • Size

      76KB

    • MD5

      dd9c431fe2b7410fef9f665507e98d50

    • SHA1

      e0ebb190a7ad5aa55bc57d566dc6b3ed36d2dee2

    • SHA256

      827151585e870ca38cc0a2b9a20f8d925d06b5d7a4f424e98aee6ad3d3c29362

    • SHA512

      d6550b0b79af8ab742a1f6185586d0ab779c432fca66dd89ffa2a34877e432351cd211e421c2a1586472843ea77b991b5092048f27edff0de65c6da458ed08fb

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2wVEJW:ymb3NkkiQ3mdBjF+3TU2KEJW

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks