General

  • Target

    080cc922b540c89e57aa0c03a36889aa29ba0f15de30efeffec055a55eb3dbfd_NeikiAnalytics.exe

  • Size

    90KB

  • Sample

    240620-ytq9xavhpd

  • MD5

    452d9b785cb557e23764fd336519daa0

  • SHA1

    1f66f919d1273ba536905be0cce242f53ba5afa3

  • SHA256

    080cc922b540c89e57aa0c03a36889aa29ba0f15de30efeffec055a55eb3dbfd

  • SHA512

    e815122c70f146372bd84ba5fa614e36e9a355b5d60675d5249d99cfae1ea7e8873bddb083248131907de14a445a1240dca0e4a2d80da9a955cd047503d066c9

  • SSDEEP

    1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+J:chOmTsF93UYfwC6GIoutieyhC2lbgGic

Malware Config

Targets

    • Target

      080cc922b540c89e57aa0c03a36889aa29ba0f15de30efeffec055a55eb3dbfd_NeikiAnalytics.exe

    • Size

      90KB

    • MD5

      452d9b785cb557e23764fd336519daa0

    • SHA1

      1f66f919d1273ba536905be0cce242f53ba5afa3

    • SHA256

      080cc922b540c89e57aa0c03a36889aa29ba0f15de30efeffec055a55eb3dbfd

    • SHA512

      e815122c70f146372bd84ba5fa614e36e9a355b5d60675d5249d99cfae1ea7e8873bddb083248131907de14a445a1240dca0e4a2d80da9a955cd047503d066c9

    • SSDEEP

      1536:cvQBeOGtrYS3srx93UBWfwC6Ggnouy8mVeygryFU2li0gx4EBbhnyLFW+J:chOmTsF93UYfwC6GIoutieyhC2lbgGic

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks