General

  • Target

    9ffc841ae5f592725c1a88eb97da3300_NeikiAnalytics.exe

  • Size

    463KB

  • Sample

    240518-gvxpmsfa7w

  • MD5

    9ffc841ae5f592725c1a88eb97da3300

  • SHA1

    a2b9b59131c99ec92d2665540ca0de92ba9ce12e

  • SHA256

    5f4a0fac7c0ddc8aadc485422c4e1d641b7e3044e078e12be781884c193ea5d7

  • SHA512

    8c6b405565ea252729b9f133712d66429cf93dfd1f57a763821add3664f13c7bd016f3d244c83d6e703d15f3da80c68d6064752ea69732568e737495a7763bd4

  • SSDEEP

    12288:J4wFHoSTeR0oQRkay+eFp3IDvSbh5nPVP+OKaf1Vx:VeR0oykayRFp3lztP+OKaf1Vx

Malware Config

Targets

    • Target

      9ffc841ae5f592725c1a88eb97da3300_NeikiAnalytics.exe

    • Size

      463KB

    • MD5

      9ffc841ae5f592725c1a88eb97da3300

    • SHA1

      a2b9b59131c99ec92d2665540ca0de92ba9ce12e

    • SHA256

      5f4a0fac7c0ddc8aadc485422c4e1d641b7e3044e078e12be781884c193ea5d7

    • SHA512

      8c6b405565ea252729b9f133712d66429cf93dfd1f57a763821add3664f13c7bd016f3d244c83d6e703d15f3da80c68d6064752ea69732568e737495a7763bd4

    • SSDEEP

      12288:J4wFHoSTeR0oQRkay+eFp3IDvSbh5nPVP+OKaf1Vx:VeR0oykayRFp3lztP+OKaf1Vx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks