General

  • Target

    1381002510163c85e4c882814bbd3107488e8db0ef6d62f0e5b12a837edd700e_NeikiAnalytics.exe

  • Size

    62KB

  • Sample

    240620-1thnwayfka

  • MD5

    3cdbaafd80a81a9b72b8425b3bc02fe0

  • SHA1

    1f4fb7b8defc4deb5ba30c945a3340b997d26fc0

  • SHA256

    1381002510163c85e4c882814bbd3107488e8db0ef6d62f0e5b12a837edd700e

  • SHA512

    6a851c6bfe74da6a76704db05b747692c24f2f1317d4709088e4c50b5eb4f7b64e919f68bc5d3e69fca8211d1205dfda52cffb257423e9161124c7ecf785c972

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsImsBLQU7:ymb3NkkiQ3mdBjFIsIFBc2

Malware Config

Targets

    • Target

      1381002510163c85e4c882814bbd3107488e8db0ef6d62f0e5b12a837edd700e_NeikiAnalytics.exe

    • Size

      62KB

    • MD5

      3cdbaafd80a81a9b72b8425b3bc02fe0

    • SHA1

      1f4fb7b8defc4deb5ba30c945a3340b997d26fc0

    • SHA256

      1381002510163c85e4c882814bbd3107488e8db0ef6d62f0e5b12a837edd700e

    • SHA512

      6a851c6bfe74da6a76704db05b747692c24f2f1317d4709088e4c50b5eb4f7b64e919f68bc5d3e69fca8211d1205dfda52cffb257423e9161124c7ecf785c972

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsImsBLQU7:ymb3NkkiQ3mdBjFIsIFBc2

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks