General

  • Target

    e0415c69b6d1ce021ceda70bf6c5c3a0_NeikiAnalytics.exe

  • Size

    94KB

  • Sample

    240518-speseshf6s

  • MD5

    e0415c69b6d1ce021ceda70bf6c5c3a0

  • SHA1

    0c097941b4532d68fb01923b74c04ddb141203a5

  • SHA256

    e3f5cfacfa961cad681a52de50f106bc3752a1463e774eceba40eaf42eefbebe

  • SHA512

    1870f432f65515ebdda36cb5d59158d71634492068afab1b5d4b9069bff8d5313737f51d1ed4099a14ff84157da85061ef912e4b2ca51ff9f4efd0843b700383

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxEPOfPrA3:ymb3NkkiQ3mdBjFo73PYP1lri3KuOnre

Malware Config

Targets

    • Target

      e0415c69b6d1ce021ceda70bf6c5c3a0_NeikiAnalytics.exe

    • Size

      94KB

    • MD5

      e0415c69b6d1ce021ceda70bf6c5c3a0

    • SHA1

      0c097941b4532d68fb01923b74c04ddb141203a5

    • SHA256

      e3f5cfacfa961cad681a52de50f106bc3752a1463e774eceba40eaf42eefbebe

    • SHA512

      1870f432f65515ebdda36cb5d59158d71634492068afab1b5d4b9069bff8d5313737f51d1ed4099a14ff84157da85061ef912e4b2ca51ff9f4efd0843b700383

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73XH/YP1HFrJximAAxEPOfPrA3:ymb3NkkiQ3mdBjFo73PYP1lri3KuOnre

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks