General

  • Target

    537f7c98b9b807e6abb72990b8588dcbba3d7c75108130a917ebcd3fbfe7ad74_NeikiAnalytics.exe

  • Size

    83KB

  • Sample

    240621-j33a7swfpj

  • MD5

    39f289ddbf21cecd72378d7c0c992880

  • SHA1

    39f7a10835860db48bdac153c122c80d3f648261

  • SHA256

    537f7c98b9b807e6abb72990b8588dcbba3d7c75108130a917ebcd3fbfe7ad74

  • SHA512

    4d929bf0beccf358568df2dcb75588e05beebe872e95433238b44dfbcf810a3daf3388685a62b7c7d6f6848c50e9bacdaf708d9aed4acbb62751ea4b197ffe44

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JkZPsv8s:ymb3NkkiQ3mdBjFIWeFGyA9Pzs

Malware Config

Targets

    • Target

      537f7c98b9b807e6abb72990b8588dcbba3d7c75108130a917ebcd3fbfe7ad74_NeikiAnalytics.exe

    • Size

      83KB

    • MD5

      39f289ddbf21cecd72378d7c0c992880

    • SHA1

      39f7a10835860db48bdac153c122c80d3f648261

    • SHA256

      537f7c98b9b807e6abb72990b8588dcbba3d7c75108130a917ebcd3fbfe7ad74

    • SHA512

      4d929bf0beccf358568df2dcb75588e05beebe872e95433238b44dfbcf810a3daf3388685a62b7c7d6f6848c50e9bacdaf708d9aed4acbb62751ea4b197ffe44

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JkZPsv8s:ymb3NkkiQ3mdBjFIWeFGyA9Pzs

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks