General

  • Target

    8702e323644efc8f4533384280dec760_NeikiAnalytics.exe

  • Size

    441KB

  • Sample

    240518-eg7xcaah95

  • MD5

    8702e323644efc8f4533384280dec760

  • SHA1

    5ac0063a900f82cbe194719fce4ed9a66c0ae1f2

  • SHA256

    8cf8c99a6200bbb789af08f5b98e0840b40e861300a686105d796f1408f1903e

  • SHA512

    949889397df5c740cc3e5313a6de14f510e651a7af7fe24937b270970478096c121aa2aac59e15ff52cd20b7511a42adfedefd19020c9f71f1fbb3f4db79f105

  • SSDEEP

    12288:w4wFHoS9KxbNnidEhjEJd1kNpeUgI95yRoZHVaoJMOxFXnRV4PiGO0hUmHc:kKxbNndhjEJd1kNpeUgI95yRoZHgoJMK

Malware Config

Targets

    • Target

      8702e323644efc8f4533384280dec760_NeikiAnalytics.exe

    • Size

      441KB

    • MD5

      8702e323644efc8f4533384280dec760

    • SHA1

      5ac0063a900f82cbe194719fce4ed9a66c0ae1f2

    • SHA256

      8cf8c99a6200bbb789af08f5b98e0840b40e861300a686105d796f1408f1903e

    • SHA512

      949889397df5c740cc3e5313a6de14f510e651a7af7fe24937b270970478096c121aa2aac59e15ff52cd20b7511a42adfedefd19020c9f71f1fbb3f4db79f105

    • SSDEEP

      12288:w4wFHoS9KxbNnidEhjEJd1kNpeUgI95yRoZHVaoJMOxFXnRV4PiGO0hUmHc:kKxbNndhjEJd1kNpeUgI95yRoZHgoJMK

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks