General

  • Target

    6b88b3e5338b05529e7b2d236a3180d59c6850f3c48aa6cd2dcbbcfc61fa87c2_NeikiAnalytics.exe

  • Size

    67KB

  • Sample

    240621-n69xnssfql

  • MD5

    461a89fa049ea8085a7543d236761960

  • SHA1

    05724ae1922632090a3b0e077e4ceaf2b06d507d

  • SHA256

    6b88b3e5338b05529e7b2d236a3180d59c6850f3c48aa6cd2dcbbcfc61fa87c2

  • SHA512

    ae5702a47a1beafa6a767f41767cfa879182b2c404ce2245bb2319790e3ce3d0b6072d160024f5b32a840ca8ba4f16163373dab69bf9b337c399419ad4906b31

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfMyS:ymb3NkkiQ3mdBjFI4V4yS

Malware Config

Targets

    • Target

      6b88b3e5338b05529e7b2d236a3180d59c6850f3c48aa6cd2dcbbcfc61fa87c2_NeikiAnalytics.exe

    • Size

      67KB

    • MD5

      461a89fa049ea8085a7543d236761960

    • SHA1

      05724ae1922632090a3b0e077e4ceaf2b06d507d

    • SHA256

      6b88b3e5338b05529e7b2d236a3180d59c6850f3c48aa6cd2dcbbcfc61fa87c2

    • SHA512

      ae5702a47a1beafa6a767f41767cfa879182b2c404ce2245bb2319790e3ce3d0b6072d160024f5b32a840ca8ba4f16163373dab69bf9b337c399419ad4906b31

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfMyS:ymb3NkkiQ3mdBjFI4V4yS

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks