General

  • Target

    1206c6430f010522b74c092dd58ac0f0_NeikiAnalytics.exe

  • Size

    59KB

  • Sample

    240606-pdk9aadh9y

  • MD5

    1206c6430f010522b74c092dd58ac0f0

  • SHA1

    842d32a09386c058a32d93a6cd11fbd46cacfe0f

  • SHA256

    8f3d73497407a3287d1cb40a4db2177fc442eacc1e9b457ac8c94a4d625950a9

  • SHA512

    8fc3a5980b98e6e6a1c0ec9788063765e8d41192a68b8f9c45720fae9ae76fc6168a3daebe9c00713cd4f48e02be69847718aeaa0babd9ac4817d1f391ea5961

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk9UgH:ymb3NkkiQ3mdBjFIvlqgH

Malware Config

Targets

    • Target

      1206c6430f010522b74c092dd58ac0f0_NeikiAnalytics.exe

    • Size

      59KB

    • MD5

      1206c6430f010522b74c092dd58ac0f0

    • SHA1

      842d32a09386c058a32d93a6cd11fbd46cacfe0f

    • SHA256

      8f3d73497407a3287d1cb40a4db2177fc442eacc1e9b457ac8c94a4d625950a9

    • SHA512

      8fc3a5980b98e6e6a1c0ec9788063765e8d41192a68b8f9c45720fae9ae76fc6168a3daebe9c00713cd4f48e02be69847718aeaa0babd9ac4817d1f391ea5961

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIvuzk9UgH:ymb3NkkiQ3mdBjFIvlqgH

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks