General

  • Target

    e33e3e955583d4ea1b4326bf68730cc0_NeikiAnalytics.exe

  • Size

    77KB

  • Sample

    240518-szmk1sac7y

  • MD5

    e33e3e955583d4ea1b4326bf68730cc0

  • SHA1

    f0845885c0ce907660b2d3817499c34cec8a99e8

  • SHA256

    bed874c0792aa3bfbeaa114f6c85a00b8926e6b91918fe3df83bdd991c928247

  • SHA512

    195c8e9d05b6e73fe08b6526389b96caf28caeed6148382af242f91df3420ec050e88f8fc1858df82509f53bd078b286fe2d8384f7b106693624692c0b4cddfc

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAX8YieVIJclPvPJtcdc8:ymb3NkkiQ3mdBjFo68YBVIJc9Jtx8

Malware Config

Targets

    • Target

      e33e3e955583d4ea1b4326bf68730cc0_NeikiAnalytics.exe

    • Size

      77KB

    • MD5

      e33e3e955583d4ea1b4326bf68730cc0

    • SHA1

      f0845885c0ce907660b2d3817499c34cec8a99e8

    • SHA256

      bed874c0792aa3bfbeaa114f6c85a00b8926e6b91918fe3df83bdd991c928247

    • SHA512

      195c8e9d05b6e73fe08b6526389b96caf28caeed6148382af242f91df3420ec050e88f8fc1858df82509f53bd078b286fe2d8384f7b106693624692c0b4cddfc

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAX8YieVIJclPvPJtcdc8:ymb3NkkiQ3mdBjFo68YBVIJc9Jtx8

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks