General

  • Target

    e0c67ada7931eca93ef248cca17e9880_NeikiAnalytics.exe

  • Size

    60KB

  • Sample

    240518-sre6zahh69

  • MD5

    e0c67ada7931eca93ef248cca17e9880

  • SHA1

    25562d637ab8bbbf52b251d8c3f15f036318119a

  • SHA256

    45f74c2c4bb3b4ce41ea1cbcc01586eb75d1059d775ae8f1a59ceaf8d85c6be6

  • SHA512

    d7342fada1eae7573c35121bf3141ef75ebc172a808c457efe755e899943b50037baa15e46f5812a43c145fa4eb3f79cd36451c2922935c1c2619b677d23ac75

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27k:ymb3NkkiQ3mdBjFI9z

Malware Config

Targets

    • Target

      e0c67ada7931eca93ef248cca17e9880_NeikiAnalytics.exe

    • Size

      60KB

    • MD5

      e0c67ada7931eca93ef248cca17e9880

    • SHA1

      25562d637ab8bbbf52b251d8c3f15f036318119a

    • SHA256

      45f74c2c4bb3b4ce41ea1cbcc01586eb75d1059d775ae8f1a59ceaf8d85c6be6

    • SHA512

      d7342fada1eae7573c35121bf3141ef75ebc172a808c457efe755e899943b50037baa15e46f5812a43c145fa4eb3f79cd36451c2922935c1c2619b677d23ac75

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDI9L27k:ymb3NkkiQ3mdBjFI9z

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks