General

  • Target

    759de19fb373dc3534170033d679fe730a327e290f199120e893660b791f1092_NeikiAnalytics.exe

  • Size

    176KB

  • Sample

    240627-lj2axaxblj

  • MD5

    f1f434b436f067345da5a874e6638d50

  • SHA1

    7a4718e9bcfe07b663a1e3288a8f8cbc7c9a5686

  • SHA256

    759de19fb373dc3534170033d679fe730a327e290f199120e893660b791f1092

  • SHA512

    50edb45fd52c39a922641604119ebc7e46ff08640fa56d6a5505891643e49ba78509bc801cbc8b23f6baca79366b12a787877ad5f2457ff8f00e9cedc1ecb92b

  • SSDEEP

    3072:6hOmTsF93UYfwC6GIoutQ0tSe5yLpcka62c+8+dRNN7Yk+6C2Wb:6cm4FmowdHoSQ0tH6lCXb7Ybb

Malware Config

Targets

    • Target

      759de19fb373dc3534170033d679fe730a327e290f199120e893660b791f1092_NeikiAnalytics.exe

    • Size

      176KB

    • MD5

      f1f434b436f067345da5a874e6638d50

    • SHA1

      7a4718e9bcfe07b663a1e3288a8f8cbc7c9a5686

    • SHA256

      759de19fb373dc3534170033d679fe730a327e290f199120e893660b791f1092

    • SHA512

      50edb45fd52c39a922641604119ebc7e46ff08640fa56d6a5505891643e49ba78509bc801cbc8b23f6baca79366b12a787877ad5f2457ff8f00e9cedc1ecb92b

    • SSDEEP

      3072:6hOmTsF93UYfwC6GIoutQ0tSe5yLpcka62c+8+dRNN7Yk+6C2Wb:6cm4FmowdHoSQ0tH6lCXb7Ybb

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks