General

  • Target

    760075ff24c63efdcc6c4442b70994e0_NeikiAnalytics

  • Size

    338KB

  • Sample

    240509-sz3x1acb56

  • MD5

    760075ff24c63efdcc6c4442b70994e0

  • SHA1

    e31dedf16a6c296bfe388a2200ab3eeda8a2e655

  • SHA256

    b49c6529e19eefde27ae38f2e731c865554b2913a3e8973442ed4902366d2dd5

  • SHA512

    194b006ed92b68c4bedca1c8ac78056b59a1088d3d3ff11ff723b496e738112c9da30c85530f21e6f54be4aa2b307ea402d7cd5ae103dd08b380d8d5536f7107

  • SSDEEP

    6144:Kcm4FmowdHoSKAszBd+aQz0192lTk1ycUkpCnAUo0Leu2tZGnOiQ3jiDQIZbdVn/:U4wFHoSK1zBjA892lY196AUo0LX2tZq1

Malware Config

Targets

    • Target

      760075ff24c63efdcc6c4442b70994e0_NeikiAnalytics

    • Size

      338KB

    • MD5

      760075ff24c63efdcc6c4442b70994e0

    • SHA1

      e31dedf16a6c296bfe388a2200ab3eeda8a2e655

    • SHA256

      b49c6529e19eefde27ae38f2e731c865554b2913a3e8973442ed4902366d2dd5

    • SHA512

      194b006ed92b68c4bedca1c8ac78056b59a1088d3d3ff11ff723b496e738112c9da30c85530f21e6f54be4aa2b307ea402d7cd5ae103dd08b380d8d5536f7107

    • SSDEEP

      6144:Kcm4FmowdHoSKAszBd+aQz0192lTk1ycUkpCnAUo0Leu2tZGnOiQ3jiDQIZbdVn/:U4wFHoSK1zBjA892lY196AUo0LX2tZq1

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks