General

  • Target

    69cbc85dfe51ff4a72e6cacff97c38c050cb5eeb9a349459deab366fea82ef75_NeikiAnalytics.exe

  • Size

    451KB

  • Sample

    240621-nrg84ssanm

  • MD5

    0e5ced9eb7353a9b14ac4f140f1c0560

  • SHA1

    de2f6440e435ddf06bf8f0f712a4627525550c4b

  • SHA256

    69cbc85dfe51ff4a72e6cacff97c38c050cb5eeb9a349459deab366fea82ef75

  • SHA512

    992a8a592749ea02f55a63d7333c5696352c2f315dc49ba4488a9ded1408db760a0b307adf85bf30c5920b6cf74d0e0c5115954a490b1cba27af102efecf8a11

  • SSDEEP

    6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeg:q7Tc2NYHUrAwfMp3CDg

Malware Config

Targets

    • Target

      69cbc85dfe51ff4a72e6cacff97c38c050cb5eeb9a349459deab366fea82ef75_NeikiAnalytics.exe

    • Size

      451KB

    • MD5

      0e5ced9eb7353a9b14ac4f140f1c0560

    • SHA1

      de2f6440e435ddf06bf8f0f712a4627525550c4b

    • SHA256

      69cbc85dfe51ff4a72e6cacff97c38c050cb5eeb9a349459deab366fea82ef75

    • SHA512

      992a8a592749ea02f55a63d7333c5696352c2f315dc49ba4488a9ded1408db760a0b307adf85bf30c5920b6cf74d0e0c5115954a490b1cba27af102efecf8a11

    • SSDEEP

      6144:8cm7ImGddXmNt251UriZFwfsDX2UznsaFVNJCMKAbeg:q7Tc2NYHUrAwfMp3CDg

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks