General

  • Target

    e1a8082dbc2dcc3c758fa9a3b3c37cc0_NeikiAnalytics.exe

  • Size

    75KB

  • Sample

    240518-svdsbaaa5x

  • MD5

    e1a8082dbc2dcc3c758fa9a3b3c37cc0

  • SHA1

    cf752d425d499ce37086594eeaaf1e7eec6de794

  • SHA256

    6cdb1b29648ed90329de22a7191030238071e761b10534d9a482a60158621d0b

  • SHA512

    d11165a74c56df87ee85807303398621179d10a188a33a4efecd4355a9c44e72337bfd3a8a28cd32e8dd3dde7982b766134ba3cc4ca1232dc9134c322f47a339

  • SSDEEP

    1536:9vQBeOGtrYS3srx93UBWfwC6Ggnouy8PbhnyLFWoFLAxZhMDzE8M:9hOmTsF93UYfwC6GIoutz5yLpOSDu

Malware Config

Targets

    • Target

      e1a8082dbc2dcc3c758fa9a3b3c37cc0_NeikiAnalytics.exe

    • Size

      75KB

    • MD5

      e1a8082dbc2dcc3c758fa9a3b3c37cc0

    • SHA1

      cf752d425d499ce37086594eeaaf1e7eec6de794

    • SHA256

      6cdb1b29648ed90329de22a7191030238071e761b10534d9a482a60158621d0b

    • SHA512

      d11165a74c56df87ee85807303398621179d10a188a33a4efecd4355a9c44e72337bfd3a8a28cd32e8dd3dde7982b766134ba3cc4ca1232dc9134c322f47a339

    • SSDEEP

      1536:9vQBeOGtrYS3srx93UBWfwC6Ggnouy8PbhnyLFWoFLAxZhMDzE8M:9hOmTsF93UYfwC6GIoutz5yLpOSDu

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks