General

  • Target

    0c07211726a8cd24eb3525d4bd4e1a3c23e778a8bbc6f4e1a9876e6dcf140249_NeikiAnalytics.exe

  • Size

    74KB

  • Sample

    240620-zhgf1a1arl

  • MD5

    d281673a02c461c101bceeb579f506d0

  • SHA1

    db4f1b5715b4c38e6181b92870ee3f3518427280

  • SHA256

    0c07211726a8cd24eb3525d4bd4e1a3c23e778a8bbc6f4e1a9876e6dcf140249

  • SHA512

    6268554443b671a14210a365e50e02503c77ab4072c65e390484efd3cc05d15e3c26d59104a88191d0d1b3bffc85d34162f041f414fc828653250887e77956cd

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSsD+cGUFzJ0:ymb3NkkiQ3mdBjFIwsDhbNW

Malware Config

Targets

    • Target

      0c07211726a8cd24eb3525d4bd4e1a3c23e778a8bbc6f4e1a9876e6dcf140249_NeikiAnalytics.exe

    • Size

      74KB

    • MD5

      d281673a02c461c101bceeb579f506d0

    • SHA1

      db4f1b5715b4c38e6181b92870ee3f3518427280

    • SHA256

      0c07211726a8cd24eb3525d4bd4e1a3c23e778a8bbc6f4e1a9876e6dcf140249

    • SHA512

      6268554443b671a14210a365e50e02503c77ab4072c65e390484efd3cc05d15e3c26d59104a88191d0d1b3bffc85d34162f041f414fc828653250887e77956cd

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSsD+cGUFzJ0:ymb3NkkiQ3mdBjFIwsDhbNW

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks