General

  • Target

    09cc945c02a3b0d00777214ec6ed5f80_NeikiAnalytics.exe

  • Size

    90KB

  • Sample

    240606-mwd7ksdb4v

  • MD5

    09cc945c02a3b0d00777214ec6ed5f80

  • SHA1

    a3e56921a4c27c1f680449ebc8c224e27a3e353f

  • SHA256

    c41ccd30048c4a5959aa1bd80acaed010dadc6d95abbcc981e62fe69b6165f91

  • SHA512

    227612c8c93086599b8dbba629a193809c2447751da072c9c4e5c4eb8064d75ed483eb4d114987e33e97db2d52faf5787148def205b01fd8f9d4f316d3d55e7b

  • SSDEEP

    1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+YvRM:chOmTsF93UYfwC6GIoutieyhC2lbgGiM

Malware Config

Targets

    • Target

      09cc945c02a3b0d00777214ec6ed5f80_NeikiAnalytics.exe

    • Size

      90KB

    • MD5

      09cc945c02a3b0d00777214ec6ed5f80

    • SHA1

      a3e56921a4c27c1f680449ebc8c224e27a3e353f

    • SHA256

      c41ccd30048c4a5959aa1bd80acaed010dadc6d95abbcc981e62fe69b6165f91

    • SHA512

      227612c8c93086599b8dbba629a193809c2447751da072c9c4e5c4eb8064d75ed483eb4d114987e33e97db2d52faf5787148def205b01fd8f9d4f316d3d55e7b

    • SSDEEP

      1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+YvRM:chOmTsF93UYfwC6GIoutieyhC2lbgGiM

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks