General

  • Target

    12e263b1cfebc695ddc525b28e41e8b0_NeikiAnalytics.exe

  • Size

    328KB

  • Sample

    240606-pja1hafa44

  • MD5

    12e263b1cfebc695ddc525b28e41e8b0

  • SHA1

    cab2511b1e7e7db5762bf7a125c19827e7ba45d6

  • SHA256

    c7620f337bb078cf045dce1fa0e1cefedc17c3e1599dd2582751b26a03269624

  • SHA512

    672c6c0c7351fd9048ed535efee4f4fe4ff8ff9c81bc2ed2f5dc6e9d4bfe69d1c5d9f4410042632b0e52ddfe62369f10f70f671150aa90abc9630e7a1be42294

  • SSDEEP

    6144:9cm4FmowdHoS4BftapTs8Hoo+6MjTVhRDkPR:/4wFHoS4d0G8HoljTVhRDM

Malware Config

Targets

    • Target

      12e263b1cfebc695ddc525b28e41e8b0_NeikiAnalytics.exe

    • Size

      328KB

    • MD5

      12e263b1cfebc695ddc525b28e41e8b0

    • SHA1

      cab2511b1e7e7db5762bf7a125c19827e7ba45d6

    • SHA256

      c7620f337bb078cf045dce1fa0e1cefedc17c3e1599dd2582751b26a03269624

    • SHA512

      672c6c0c7351fd9048ed535efee4f4fe4ff8ff9c81bc2ed2f5dc6e9d4bfe69d1c5d9f4410042632b0e52ddfe62369f10f70f671150aa90abc9630e7a1be42294

    • SSDEEP

      6144:9cm4FmowdHoS4BftapTs8Hoo+6MjTVhRDkPR:/4wFHoS4d0G8HoljTVhRDM

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks