General

  • Target

    0ea6b8e3686d9502fe20e3a8fb8baff479cf32f4aec70bc4387b57986bc3e17d_NeikiAnalytics.exe

  • Size

    67KB

  • Sample

    240620-zz63zs1fmm

  • MD5

    64fe2ba792f4781c3c7c7a6ba05e4c80

  • SHA1

    a54085ab2f0339d961ef9e63844b38103959263e

  • SHA256

    0ea6b8e3686d9502fe20e3a8fb8baff479cf32f4aec70bc4387b57986bc3e17d

  • SHA512

    2ef149a86ee489f8a36d317f44793634fa0556f3c07f48a400591e48cdd722374d805a70cca85b11728201e3b9314f7b9fc9ee2a9f32e0b6965f4e771dc6c163

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZG:ymb3NkkiQ3mdBjF0yUmU

Malware Config

Targets

    • Target

      0ea6b8e3686d9502fe20e3a8fb8baff479cf32f4aec70bc4387b57986bc3e17d_NeikiAnalytics.exe

    • Size

      67KB

    • MD5

      64fe2ba792f4781c3c7c7a6ba05e4c80

    • SHA1

      a54085ab2f0339d961ef9e63844b38103959263e

    • SHA256

      0ea6b8e3686d9502fe20e3a8fb8baff479cf32f4aec70bc4387b57986bc3e17d

    • SHA512

      2ef149a86ee489f8a36d317f44793634fa0556f3c07f48a400591e48cdd722374d805a70cca85b11728201e3b9314f7b9fc9ee2a9f32e0b6965f4e771dc6c163

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0yUPqrDZG:ymb3NkkiQ3mdBjF0yUmU

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks