General

  • Target

    1407e35de75ff7a9e9126de03c1c2640_NeikiAnalytics.exe

  • Size

    253KB

  • Sample

    240531-v98mcagc68

  • MD5

    1407e35de75ff7a9e9126de03c1c2640

  • SHA1

    875ba9d9cc0297665bfa7265f3323930da6f52cc

  • SHA256

    a742eff0c2dcafe7c0f110d9ecb6b670b4c01162199710d06ba93c3b3b16567c

  • SHA512

    bde7ad363c6622ef7ebf8a8d7fe30b668f1c17121aae2d0c61d4c5ea496be5ae7f2064d58ecdc9693deca1087cd5192349222845374e350e10512cfeaa2930ca

  • SSDEEP

    3072:chOmTsF93UYfwC6GIoutieyhC2lbgGi5yLpcgDE4JBuItR8pTsgZ9WT4iaz+THk8:ccm4FmowdHoSi9EIBftapTs4WZazeE8b

Malware Config

Targets

    • Target

      1407e35de75ff7a9e9126de03c1c2640_NeikiAnalytics.exe

    • Size

      253KB

    • MD5

      1407e35de75ff7a9e9126de03c1c2640

    • SHA1

      875ba9d9cc0297665bfa7265f3323930da6f52cc

    • SHA256

      a742eff0c2dcafe7c0f110d9ecb6b670b4c01162199710d06ba93c3b3b16567c

    • SHA512

      bde7ad363c6622ef7ebf8a8d7fe30b668f1c17121aae2d0c61d4c5ea496be5ae7f2064d58ecdc9693deca1087cd5192349222845374e350e10512cfeaa2930ca

    • SSDEEP

      3072:chOmTsF93UYfwC6GIoutieyhC2lbgGi5yLpcgDE4JBuItR8pTsgZ9WT4iaz+THk8:ccm4FmowdHoSi9EIBftapTs4WZazeE8b

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks