General

  • Target

    69a3b9a1985d6e2a6a010334415fa1e0_NeikiAnalytics

  • Size

    211KB

  • Sample

    240509-sdmc5afg3w

  • MD5

    69a3b9a1985d6e2a6a010334415fa1e0

  • SHA1

    991dc42559906353b764d027ee6616c67db99e63

  • SHA256

    da8e28b57626c2527da39e7a8be27251a7125ebf187c96ad52be6efe0617df18

  • SHA512

    c1d2243ff02a1cfa46d2a7e02052d675171e2c0e4a0ba966e6e9a7582e6482f3d9fb67e38793213b3e57d3fc0aa9ac60ea4ba9e6b3bc31eb611e95124cdccc7a

  • SSDEEP

    6144:Hcm4FmowdHoSrXZf8l/ubPzYNLPf4t+l5:V4wFHoSBK/ubLcfj

Malware Config

Targets

    • Target

      69a3b9a1985d6e2a6a010334415fa1e0_NeikiAnalytics

    • Size

      211KB

    • MD5

      69a3b9a1985d6e2a6a010334415fa1e0

    • SHA1

      991dc42559906353b764d027ee6616c67db99e63

    • SHA256

      da8e28b57626c2527da39e7a8be27251a7125ebf187c96ad52be6efe0617df18

    • SHA512

      c1d2243ff02a1cfa46d2a7e02052d675171e2c0e4a0ba966e6e9a7582e6482f3d9fb67e38793213b3e57d3fc0aa9ac60ea4ba9e6b3bc31eb611e95124cdccc7a

    • SSDEEP

      6144:Hcm4FmowdHoSrXZf8l/ubPzYNLPf4t+l5:V4wFHoSBK/ubLcfj

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks