General

  • Target

    6bdf114b920f46288106f8df51f5e8a0_NeikiAnalytics.exe

  • Size

    68KB

  • Sample

    240523-bp88lagc6x

  • MD5

    6bdf114b920f46288106f8df51f5e8a0

  • SHA1

    456a0a2218b3f6cd9a9932295b05cb57101d734e

  • SHA256

    2d131d70af5d7c87b65325a8c71a92320cdeecd9c06d004a7ebfb35c59a3b216

  • SHA512

    bb41cc1776b0564a6afc5a8ae765c0d785031a7c9bfc58672c4e8c52c8615f437f9b2177dbf7c605fe206325cfbc8dab8d8088853871f698179ecded18f4e13b

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIfv7+afCD+QsQbO:ymb3NkkiQ3mdBjFIfvTfCD+H/

Malware Config

Targets

    • Target

      6bdf114b920f46288106f8df51f5e8a0_NeikiAnalytics.exe

    • Size

      68KB

    • MD5

      6bdf114b920f46288106f8df51f5e8a0

    • SHA1

      456a0a2218b3f6cd9a9932295b05cb57101d734e

    • SHA256

      2d131d70af5d7c87b65325a8c71a92320cdeecd9c06d004a7ebfb35c59a3b216

    • SHA512

      bb41cc1776b0564a6afc5a8ae765c0d785031a7c9bfc58672c4e8c52c8615f437f9b2177dbf7c605fe206325cfbc8dab8d8088853871f698179ecded18f4e13b

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIfv7+afCD+QsQbO:ymb3NkkiQ3mdBjFIfvTfCD+H/

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks