General

  • Target

    0f5c560353d3d270251b14de8b520f749df11719127e9ad21fc0bc45c1483685_NeikiAnalytics.exe

  • Size

    95KB

  • Sample

    240620-z5e7fs1gkm

  • MD5

    c5daf3836f4497f49eba68fd806fe830

  • SHA1

    b21da1f61e407961dafb23db6541e68a87c18612

  • SHA256

    0f5c560353d3d270251b14de8b520f749df11719127e9ad21fc0bc45c1483685

  • SHA512

    c6a82a915f404ea0f3c5608ae977923e68cf01ea8725545c61b9eb67c4632a1012af87e9bb2b18a0a4e25fc3dc28aeb054c91c8f79c016edfb7bf09711c311b1

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpi+qP1hvZo66Ox4oq2SQwfTrJ:ymb3NkkiQ3mdBjFIj+qNhvZuHQYfw4L

Malware Config

Targets

    • Target

      0f5c560353d3d270251b14de8b520f749df11719127e9ad21fc0bc45c1483685_NeikiAnalytics.exe

    • Size

      95KB

    • MD5

      c5daf3836f4497f49eba68fd806fe830

    • SHA1

      b21da1f61e407961dafb23db6541e68a87c18612

    • SHA256

      0f5c560353d3d270251b14de8b520f749df11719127e9ad21fc0bc45c1483685

    • SHA512

      c6a82a915f404ea0f3c5608ae977923e68cf01ea8725545c61b9eb67c4632a1012af87e9bb2b18a0a4e25fc3dc28aeb054c91c8f79c016edfb7bf09711c311b1

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpi+qP1hvZo66Ox4oq2SQwfTrJ:ymb3NkkiQ3mdBjFIj+qNhvZuHQYfw4L

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks