General

  • Target

    712788ad6f92df6c05bda329b0a10050_NeikiAnalytics.exe

  • Size

    245KB

  • Sample

    240523-b8h6hshc51

  • MD5

    712788ad6f92df6c05bda329b0a10050

  • SHA1

    c1f9701283bf03d8e0ccb47215bd3d663968e72d

  • SHA256

    8322d18921d1af9024ba002422d4e2fc1000677f6c4d3be334453c14a0cf1084

  • SHA512

    9d2f7949b9d9318284217d75557ccc55f26b86b950030b43a711d307f26b6be6839ef0e56b3713ec230f598c933d389560bd1877b62b94ad87a6a2ef83aab0ce

  • SSDEEP

    3072:chOmTsF93UYfwC6GIoutieyhC2lbgGi5yLpcgDE4JBuItR8pTsgZ9WT4iaz+M:ccm4FmowdHoSi9EIBftapTs4WZazH

Malware Config

Targets

    • Target

      712788ad6f92df6c05bda329b0a10050_NeikiAnalytics.exe

    • Size

      245KB

    • MD5

      712788ad6f92df6c05bda329b0a10050

    • SHA1

      c1f9701283bf03d8e0ccb47215bd3d663968e72d

    • SHA256

      8322d18921d1af9024ba002422d4e2fc1000677f6c4d3be334453c14a0cf1084

    • SHA512

      9d2f7949b9d9318284217d75557ccc55f26b86b950030b43a711d307f26b6be6839ef0e56b3713ec230f598c933d389560bd1877b62b94ad87a6a2ef83aab0ce

    • SSDEEP

      3072:chOmTsF93UYfwC6GIoutieyhC2lbgGi5yLpcgDE4JBuItR8pTsgZ9WT4iaz+M:ccm4FmowdHoSi9EIBftapTs4WZazH

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks