General

  • Target

    49b39848095480af27aa27802450bc30_NeikiAnalytics

  • Size

    214KB

  • Sample

    240509-qwsazscb8z

  • MD5

    49b39848095480af27aa27802450bc30

  • SHA1

    a971f41d856d1fb6a9a4d41dcb8e4f98a347e1b3

  • SHA256

    48f18790bb55c3ae878ad208f688091d46256d753366882ac586460e6b47f717

  • SHA512

    8dde2bce5ae0d108457851ed30169b389e77afc1e4e66fe905b22c373b0b167b483ae94e7430e07e8e061fcd24b55b650cb804efa8f5021521f0ae8adf1f24f0

  • SSDEEP

    3072:ZhOm2sI93UufdC67ciEu0P5axvqdUmdznCvs7BuRoYFBg/gXVqPfSoi0yG24eP3:Zcm7ImGddXEu0ucju6/4kf724a

Malware Config

Targets

    • Target

      49b39848095480af27aa27802450bc30_NeikiAnalytics

    • Size

      214KB

    • MD5

      49b39848095480af27aa27802450bc30

    • SHA1

      a971f41d856d1fb6a9a4d41dcb8e4f98a347e1b3

    • SHA256

      48f18790bb55c3ae878ad208f688091d46256d753366882ac586460e6b47f717

    • SHA512

      8dde2bce5ae0d108457851ed30169b389e77afc1e4e66fe905b22c373b0b167b483ae94e7430e07e8e061fcd24b55b650cb804efa8f5021521f0ae8adf1f24f0

    • SSDEEP

      3072:ZhOm2sI93UufdC67ciEu0P5axvqdUmdznCvs7BuRoYFBg/gXVqPfSoi0yG24eP3:Zcm7ImGddXEu0ucju6/4kf724a

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks