General

  • Target

    83f2ab36bda595afc10c03efe3400420_NeikiAnalytics.exe

  • Size

    88KB

  • Sample

    240617-nh7seaycpd

  • MD5

    83f2ab36bda595afc10c03efe3400420

  • SHA1

    c3f454876a76344883a5efad875b5c3c520d12c4

  • SHA256

    6ea5a337cabc1b7a86eae78b72878ff7be68a3a6d7417d0fdd5f0dbf9fb33966

  • SHA512

    b9eb92ca686769bd6c946065bc0bdfadb79ad40cc10758f921e4ec30d871d6b99864b95aac10909cf1ecba767fbc3bf98bdf0daa5c3b51ec041741653700d4e9

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2iJvRirE0DmmdL2jqWkB9:ymb3NkkiQ3mdBjF+3TU2iBRioSumWS1P

Malware Config

Targets

    • Target

      83f2ab36bda595afc10c03efe3400420_NeikiAnalytics.exe

    • Size

      88KB

    • MD5

      83f2ab36bda595afc10c03efe3400420

    • SHA1

      c3f454876a76344883a5efad875b5c3c520d12c4

    • SHA256

      6ea5a337cabc1b7a86eae78b72878ff7be68a3a6d7417d0fdd5f0dbf9fb33966

    • SHA512

      b9eb92ca686769bd6c946065bc0bdfadb79ad40cc10758f921e4ec30d871d6b99864b95aac10909cf1ecba767fbc3bf98bdf0daa5c3b51ec041741653700d4e9

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2iJvRirE0DmmdL2jqWkB9:ymb3NkkiQ3mdBjF+3TU2iBRioSumWS1P

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks