General

  • Target

    1ddaa34d8f9537ef16d415cef40251fc0132d174cfda5ac71fc8b9ae8efa6bc5_NeikiAnalytics.exe

  • Size

    90KB

  • Sample

    240620-3jwtvssekf

  • MD5

    193ddb600f678a6d7610100fd8a54e40

  • SHA1

    a810beacbe2b9ac6fe159e034bddabfa6a9dee51

  • SHA256

    1ddaa34d8f9537ef16d415cef40251fc0132d174cfda5ac71fc8b9ae8efa6bc5

  • SHA512

    665507cad77971bdb934546e5fb86eb14181c9fbae7e81e458bf542ddb9405f09b6d6006789a067f9e1ceeae36fe141fc59ee0e1954bd26eae95b5c874406d3e

  • SSDEEP

    1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+h:chOmTsF93UYfwC6GIoutieyhC2lbgGiW

Malware Config

Targets

    • Target

      1ddaa34d8f9537ef16d415cef40251fc0132d174cfda5ac71fc8b9ae8efa6bc5_NeikiAnalytics.exe

    • Size

      90KB

    • MD5

      193ddb600f678a6d7610100fd8a54e40

    • SHA1

      a810beacbe2b9ac6fe159e034bddabfa6a9dee51

    • SHA256

      1ddaa34d8f9537ef16d415cef40251fc0132d174cfda5ac71fc8b9ae8efa6bc5

    • SHA512

      665507cad77971bdb934546e5fb86eb14181c9fbae7e81e458bf542ddb9405f09b6d6006789a067f9e1ceeae36fe141fc59ee0e1954bd26eae95b5c874406d3e

    • SSDEEP

      1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+h:chOmTsF93UYfwC6GIoutieyhC2lbgGiW

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks