General

  • Target

    28dafbfb70746a46d5c57b7b03416ed0_NeikiAnalytics.exe

  • Size

    82KB

  • Sample

    240529-b3yn1sdc4w

  • MD5

    28dafbfb70746a46d5c57b7b03416ed0

  • SHA1

    388896c5a9a354c074f6bccaf549387ba8bc62cd

  • SHA256

    fe3ed9ef1414624e5972a1e302523b7d0623b5a254d139013ec29ac06aaeb618

  • SHA512

    137627af8eea2d016e63bcf132426281b31414a35adfd9c307e9db8e941d654c4000131d3b4dcd878f318321c6214a6a45130af7c5366022d3e6a83f66fe25cd

  • SSDEEP

    1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6TQpCi1PC:zhOmTsF93UYfwC6GIoutiTU2HVS64NC

Malware Config

Targets

    • Target

      28dafbfb70746a46d5c57b7b03416ed0_NeikiAnalytics.exe

    • Size

      82KB

    • MD5

      28dafbfb70746a46d5c57b7b03416ed0

    • SHA1

      388896c5a9a354c074f6bccaf549387ba8bc62cd

    • SHA256

      fe3ed9ef1414624e5972a1e302523b7d0623b5a254d139013ec29ac06aaeb618

    • SHA512

      137627af8eea2d016e63bcf132426281b31414a35adfd9c307e9db8e941d654c4000131d3b4dcd878f318321c6214a6a45130af7c5366022d3e6a83f66fe25cd

    • SSDEEP

      1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6TQpCi1PC:zhOmTsF93UYfwC6GIoutiTU2HVS64NC

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks