General

  • Target

    87efa4ab4eb27156bdf32578f30978e0_NeikiAnalytics.exe

  • Size

    253KB

  • Sample

    240601-brxbtadd72

  • MD5

    87efa4ab4eb27156bdf32578f30978e0

  • SHA1

    f0ad19a2928a86c7c916be2b5fc559cdb0be31f3

  • SHA256

    c84bbf12ec0df1bd692bf34d66661612a1ba927b25c946e6dbc14485c4e529b1

  • SHA512

    3abdddf68921610d6663a772b0e297df023d8e92848c24e8bea162057ef8c28c3f944a220b1363caff1a08a6c0ef508aa9b35c62404c6a64dfe0fafb731f2d97

  • SSDEEP

    3072:chOmTsF93UYfwC6GIoutieyhC2lbgGi5yLpcgDE4JBuItR8pTsgZ9WT4iaz+THka:ccm4FmowdHoSi9EIBftapTs4WZazeE1k

Malware Config

Targets

    • Target

      87efa4ab4eb27156bdf32578f30978e0_NeikiAnalytics.exe

    • Size

      253KB

    • MD5

      87efa4ab4eb27156bdf32578f30978e0

    • SHA1

      f0ad19a2928a86c7c916be2b5fc559cdb0be31f3

    • SHA256

      c84bbf12ec0df1bd692bf34d66661612a1ba927b25c946e6dbc14485c4e529b1

    • SHA512

      3abdddf68921610d6663a772b0e297df023d8e92848c24e8bea162057ef8c28c3f944a220b1363caff1a08a6c0ef508aa9b35c62404c6a64dfe0fafb731f2d97

    • SSDEEP

      3072:chOmTsF93UYfwC6GIoutieyhC2lbgGi5yLpcgDE4JBuItR8pTsgZ9WT4iaz+THka:ccm4FmowdHoSi9EIBftapTs4WZazeE1k

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks