General

  • Target

    813383813c95e38ca5cd7f122f130eb0_NeikiAnalytics

  • Size

    440KB

  • Sample

    240509-thsldaac9t

  • MD5

    813383813c95e38ca5cd7f122f130eb0

  • SHA1

    646b6e7cdb5994602963a91978b83ddf50fcbf0d

  • SHA256

    829b2c5dfcd474377aa5a00e47e439e219a13e754a8edcd67e4ca941d7998dae

  • SHA512

    4d656e225c512aee3e90f8cdc2b3dcbe6eeac2cccbaa573de217f68c0c9425f66635640ad0bea0b30f99e492c8e1622e23f9072c2c1f460529e0929f804fc486

  • SSDEEP

    12288:w4wFHoS9KxbNnidEhjEJd1kNpeUgI95yRoZHVaoJMOxFXnRV4PiGO0hUmHL:kKxbNndhjEJd1kNpeUgI95yRoZHgoJMB

Malware Config

Targets

    • Target

      813383813c95e38ca5cd7f122f130eb0_NeikiAnalytics

    • Size

      440KB

    • MD5

      813383813c95e38ca5cd7f122f130eb0

    • SHA1

      646b6e7cdb5994602963a91978b83ddf50fcbf0d

    • SHA256

      829b2c5dfcd474377aa5a00e47e439e219a13e754a8edcd67e4ca941d7998dae

    • SHA512

      4d656e225c512aee3e90f8cdc2b3dcbe6eeac2cccbaa573de217f68c0c9425f66635640ad0bea0b30f99e492c8e1622e23f9072c2c1f460529e0929f804fc486

    • SSDEEP

      12288:w4wFHoS9KxbNnidEhjEJd1kNpeUgI95yRoZHVaoJMOxFXnRV4PiGO0hUmHL:kKxbNndhjEJd1kNpeUgI95yRoZHgoJMB

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks