General

  • Target

    567e81346bde6bb4b31144e1f870a3ec5299482b8edddac3d4d5f298fda9d893_NeikiAnalytics.exe

  • Size

    295KB

  • Sample

    240621-klc6esxckm

  • MD5

    5dbe3c22b55a42b657fbb40f88273260

  • SHA1

    d932ef75c5dc7e426f2751d93da20c627889e0a8

  • SHA256

    567e81346bde6bb4b31144e1f870a3ec5299482b8edddac3d4d5f298fda9d893

  • SHA512

    74a5631c19c19820bf564c6680974706d0570a840a484c2ce1b9898779e702c16527406b63d5d89a95d9348d5a3766513960ff8af7f6d8cf63c9c5179be6515b

  • SSDEEP

    6144:9cm4FmowdHoS4/8UJCf4upvUjQSmpikAAF1:/4wFHoS4kUJE4IuzQifAF1

Malware Config

Targets

    • Target

      567e81346bde6bb4b31144e1f870a3ec5299482b8edddac3d4d5f298fda9d893_NeikiAnalytics.exe

    • Size

      295KB

    • MD5

      5dbe3c22b55a42b657fbb40f88273260

    • SHA1

      d932ef75c5dc7e426f2751d93da20c627889e0a8

    • SHA256

      567e81346bde6bb4b31144e1f870a3ec5299482b8edddac3d4d5f298fda9d893

    • SHA512

      74a5631c19c19820bf564c6680974706d0570a840a484c2ce1b9898779e702c16527406b63d5d89a95d9348d5a3766513960ff8af7f6d8cf63c9c5179be6515b

    • SSDEEP

      6144:9cm4FmowdHoS4/8UJCf4upvUjQSmpikAAF1:/4wFHoS4kUJE4IuzQifAF1

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks