General

  • Target

    68392fa64b1bdbab19e92fd9484e11a63daee1520cdff85b0a9d906094357646_NeikiAnalytics.exe

  • Size

    112KB

  • Sample

    240621-nhy59sxfjc

  • MD5

    2ac30f5688608e2111a80c9cac1bbe30

  • SHA1

    e9e5e8fac974a0a0e28774d2ef293ab36a523889

  • SHA256

    68392fa64b1bdbab19e92fd9484e11a63daee1520cdff85b0a9d906094357646

  • SHA512

    bf7c7561befd6568918819771c46c193ae18bdbe2571ef8504c8ccb37f8bdf0e0d883d9fdd5fb7457dc6a5fff67aece9b6101ccc491f871e3aeeeb0ed6f6877f

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFWXkj7afowpDyJo1ZFy:n3C9BRW0j/wtyJb

Malware Config

Targets

    • Target

      68392fa64b1bdbab19e92fd9484e11a63daee1520cdff85b0a9d906094357646_NeikiAnalytics.exe

    • Size

      112KB

    • MD5

      2ac30f5688608e2111a80c9cac1bbe30

    • SHA1

      e9e5e8fac974a0a0e28774d2ef293ab36a523889

    • SHA256

      68392fa64b1bdbab19e92fd9484e11a63daee1520cdff85b0a9d906094357646

    • SHA512

      bf7c7561befd6568918819771c46c193ae18bdbe2571ef8504c8ccb37f8bdf0e0d883d9fdd5fb7457dc6a5fff67aece9b6101ccc491f871e3aeeeb0ed6f6877f

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFWXkj7afowpDyJo1ZFy:n3C9BRW0j/wtyJb

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks