General

  • Target

    092eaed865aad3cdc7bafe1ee934d1c9208ae0b9437f732d30792f13253d443c_NeikiAnalytics.exe

  • Size

    67KB

  • Sample

    240621-yamsdathrk

  • MD5

    7f98f52b26f425dd244793ca88c989c0

  • SHA1

    f8f5cbaccb012c14bef1e93a4f62f7a077a0c88b

  • SHA256

    092eaed865aad3cdc7bafe1ee934d1c9208ae0b9437f732d30792f13253d443c

  • SHA512

    1aa44dad3ec4c31a82231eeeb55dab7aacd769dc750075a112414019d0236f0d07ba1fc2b60535d25da42a3fdcd3a02e1192d6beade617b50995ad9cae643a53

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJ/RWPqBh:ymb3NkkiQ3mdBjFIqsh

Malware Config

Targets

    • Target

      092eaed865aad3cdc7bafe1ee934d1c9208ae0b9437f732d30792f13253d443c_NeikiAnalytics.exe

    • Size

      67KB

    • MD5

      7f98f52b26f425dd244793ca88c989c0

    • SHA1

      f8f5cbaccb012c14bef1e93a4f62f7a077a0c88b

    • SHA256

      092eaed865aad3cdc7bafe1ee934d1c9208ae0b9437f732d30792f13253d443c

    • SHA512

      1aa44dad3ec4c31a82231eeeb55dab7aacd769dc750075a112414019d0236f0d07ba1fc2b60535d25da42a3fdcd3a02e1192d6beade617b50995ad9cae643a53

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJ/RWPqBh:ymb3NkkiQ3mdBjFIqsh

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks