General

  • Target

    64f99884341c883b30bac2e8fde8426efe9106ab174d9eef257ce994c2f903c0_NeikiAnalytics.exe

  • Size

    101KB

  • Sample

    240620-p8by4aydkg

  • MD5

    e79ef155c8a869c16491ba5ca2458fe0

  • SHA1

    72d8fe53a93cbd8d1876d4da9b4e8902fe8befc4

  • SHA256

    64f99884341c883b30bac2e8fde8426efe9106ab174d9eef257ce994c2f903c0

  • SHA512

    b9d7a83cfa1a1aed1cbc6fe0a2861244b53d419bb519f804150ab4eb84485475f4a46b60a5ee65b57601ba8b4aea27eb2ef122523de70a94094c1b9209bda7e9

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDodtzn6zDaE0R51:ymb3NkkiQ3mdBjFodt2zE31

Malware Config

Targets

    • Target

      64f99884341c883b30bac2e8fde8426efe9106ab174d9eef257ce994c2f903c0_NeikiAnalytics.exe

    • Size

      101KB

    • MD5

      e79ef155c8a869c16491ba5ca2458fe0

    • SHA1

      72d8fe53a93cbd8d1876d4da9b4e8902fe8befc4

    • SHA256

      64f99884341c883b30bac2e8fde8426efe9106ab174d9eef257ce994c2f903c0

    • SHA512

      b9d7a83cfa1a1aed1cbc6fe0a2861244b53d419bb519f804150ab4eb84485475f4a46b60a5ee65b57601ba8b4aea27eb2ef122523de70a94094c1b9209bda7e9

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDodtzn6zDaE0R51:ymb3NkkiQ3mdBjFodt2zE31

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks