General

  • Target

    1091106094cd34db8afd4b2fb7accde0_NeikiAnalytics.exe

  • Size

    189KB

  • Sample

    240530-jwc3qsbc7v

  • MD5

    1091106094cd34db8afd4b2fb7accde0

  • SHA1

    b47ab65482ab821c25b5a31fa6d7152cab0583ac

  • SHA256

    21c8562f50dfe283c8efd587ef589e639ec054cc66993c1b91238cc65ab8ec3c

  • SHA512

    3ee2f8e004a5da411e322c063e387c725e9620a5528c187ad514c7a4dd7e2fc77b2321eca9f2a77420bbf8a50fb097298fd4ac70a64930371e190e24d6a93a14

  • SSDEEP

    3072:YhOmTsF93UYfwC6GIoutLmxHxae5yLpcgDE4JBuItR8pTsgnKbQFe3+h:Ycm4FmowdHoSLEaTBftapTsyFeOh

Malware Config

Targets

    • Target

      1091106094cd34db8afd4b2fb7accde0_NeikiAnalytics.exe

    • Size

      189KB

    • MD5

      1091106094cd34db8afd4b2fb7accde0

    • SHA1

      b47ab65482ab821c25b5a31fa6d7152cab0583ac

    • SHA256

      21c8562f50dfe283c8efd587ef589e639ec054cc66993c1b91238cc65ab8ec3c

    • SHA512

      3ee2f8e004a5da411e322c063e387c725e9620a5528c187ad514c7a4dd7e2fc77b2321eca9f2a77420bbf8a50fb097298fd4ac70a64930371e190e24d6a93a14

    • SSDEEP

      3072:YhOmTsF93UYfwC6GIoutLmxHxae5yLpcgDE4JBuItR8pTsgnKbQFe3+h:Ycm4FmowdHoSLEaTBftapTsyFeOh

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

MITRE ATT&CK Matrix

Tasks