General

  • Target

    63784d04e1aad041663c318f913459e2fe37049c67a085e9ab509fd2fc8110ea_NeikiAnalytics.exe

  • Size

    65KB

  • Sample

    240620-pyzbmsscmn

  • MD5

    bf235f7fe410798746ab97fcb70c62f0

  • SHA1

    d09e06f82a282631f7514c09f0396c4cd6ff76a2

  • SHA256

    63784d04e1aad041663c318f913459e2fe37049c67a085e9ab509fd2fc8110ea

  • SHA512

    a849a9f55b679b7f286d3db009472fa7177b1e49decb5e4fc40e8c966bdb05fe8dc95fd85e4ea26c45b56d231f081a9af0a41e6b458075d1b738a2aed439cc3b

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfL:ymb3NkkiQ3mdBjFI4VH

Malware Config

Targets

    • Target

      63784d04e1aad041663c318f913459e2fe37049c67a085e9ab509fd2fc8110ea_NeikiAnalytics.exe

    • Size

      65KB

    • MD5

      bf235f7fe410798746ab97fcb70c62f0

    • SHA1

      d09e06f82a282631f7514c09f0396c4cd6ff76a2

    • SHA256

      63784d04e1aad041663c318f913459e2fe37049c67a085e9ab509fd2fc8110ea

    • SHA512

      a849a9f55b679b7f286d3db009472fa7177b1e49decb5e4fc40e8c966bdb05fe8dc95fd85e4ea26c45b56d231f081a9af0a41e6b458075d1b738a2aed439cc3b

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfL:ymb3NkkiQ3mdBjFI4VH

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks