General

  • Target

    8a3e979714759044ff369b1f2d5f58e0_NeikiAnalytics.exe

  • Size

    253KB

  • Sample

    240601-c3mr7afa3y

  • MD5

    8a3e979714759044ff369b1f2d5f58e0

  • SHA1

    3a54c83db1d7cde928d117c16d9876dfbc7ee0ee

  • SHA256

    1c52ea85442b42a270a970687b2717948df9146c995e4f24af50a4fca57ff720

  • SHA512

    7793c8d45b9c50398bcb05909d919b384994942b646a096b135ea9ba199907bdf42dfd93e85b1cd93e6ea7d9a83a8533a7cdc1d0366d828c37e4e08ee91121d0

  • SSDEEP

    3072:chOmTsF93UYfwC6GIoutieyhC2lbgGi5yLpcgDE4JBuItR8pTsgZ9WT4iaz+THkt:ccm4FmowdHoSi9EIBftapTs4WZazeE1/

Malware Config

Targets

    • Target

      8a3e979714759044ff369b1f2d5f58e0_NeikiAnalytics.exe

    • Size

      253KB

    • MD5

      8a3e979714759044ff369b1f2d5f58e0

    • SHA1

      3a54c83db1d7cde928d117c16d9876dfbc7ee0ee

    • SHA256

      1c52ea85442b42a270a970687b2717948df9146c995e4f24af50a4fca57ff720

    • SHA512

      7793c8d45b9c50398bcb05909d919b384994942b646a096b135ea9ba199907bdf42dfd93e85b1cd93e6ea7d9a83a8533a7cdc1d0366d828c37e4e08ee91121d0

    • SSDEEP

      3072:chOmTsF93UYfwC6GIoutieyhC2lbgGi5yLpcgDE4JBuItR8pTsgZ9WT4iaz+THkt:ccm4FmowdHoSi9EIBftapTs4WZazeE1/

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks