General

  • Target

    5dcd0b68de38450507fa3a6a52e48cc671f6372fca8977135927d5f7bbf66a83_NeikiAnalytics.exe

  • Size

    83KB

  • Sample

    240621-lw79zsvere

  • MD5

    a79143cf4ccfa3aa698491a94c9f01b0

  • SHA1

    b683b3be7d202d6854dc7a9bc6d068ab020135d8

  • SHA256

    5dcd0b68de38450507fa3a6a52e48cc671f6372fca8977135927d5f7bbf66a83

  • SHA512

    2211b7a539500cded8585c7762487f3824f921520d15959e351335baa3a326b3ddb2fd18e7bac9328a1f3168360b22afa0ff0b1502bd002e46a281d70e622d4c

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAXPfgr2hKmdbcPi2vZ:ymb3NkkiQ3mdBjFo6Pfgy3dbc/Z

Malware Config

Targets

    • Target

      5dcd0b68de38450507fa3a6a52e48cc671f6372fca8977135927d5f7bbf66a83_NeikiAnalytics.exe

    • Size

      83KB

    • MD5

      a79143cf4ccfa3aa698491a94c9f01b0

    • SHA1

      b683b3be7d202d6854dc7a9bc6d068ab020135d8

    • SHA256

      5dcd0b68de38450507fa3a6a52e48cc671f6372fca8977135927d5f7bbf66a83

    • SHA512

      2211b7a539500cded8585c7762487f3824f921520d15959e351335baa3a326b3ddb2fd18e7bac9328a1f3168360b22afa0ff0b1502bd002e46a281d70e622d4c

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAXPfgr2hKmdbcPi2vZ:ymb3NkkiQ3mdBjFo6Pfgy3dbc/Z

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks