General

  • Target

    0f79f0eadc8a8a56c4579fdf2b078b50_NeikiAnalytics.exe

  • Size

    93KB

  • Sample

    240606-nzm5bsdg3y

  • MD5

    0f79f0eadc8a8a56c4579fdf2b078b50

  • SHA1

    a5d89d9586a165f83733b228dac7bbfcbdb56438

  • SHA256

    f3b20e8a46463432f739b1e24bbcc9c168b270180452a08370021a1d9430dd09

  • SHA512

    d325a535e467fe38def39de5628edd0389f7dd19f8b7507bc00c70c9bdf5df253480b264320b6c506dd1685f82efe898810a086467883b3d55aec851c409eb0e

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoLuePjDYlR3hnjKXIQSe9oEN:ymb3NkkiQ3mdBjFoLucjDilOZhoS

Malware Config

Targets

    • Target

      0f79f0eadc8a8a56c4579fdf2b078b50_NeikiAnalytics.exe

    • Size

      93KB

    • MD5

      0f79f0eadc8a8a56c4579fdf2b078b50

    • SHA1

      a5d89d9586a165f83733b228dac7bbfcbdb56438

    • SHA256

      f3b20e8a46463432f739b1e24bbcc9c168b270180452a08370021a1d9430dd09

    • SHA512

      d325a535e467fe38def39de5628edd0389f7dd19f8b7507bc00c70c9bdf5df253480b264320b6c506dd1685f82efe898810a086467883b3d55aec851c409eb0e

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoLuePjDYlR3hnjKXIQSe9oEN:ymb3NkkiQ3mdBjFoLucjDilOZhoS

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks