General

  • Target

    f2d4ff162b750632f51d3b0ad747c2b0_NeikiAnalytics.exe

  • Size

    350KB

  • Sample

    240601-qbppcsda4v

  • MD5

    f2d4ff162b750632f51d3b0ad747c2b0

  • SHA1

    7c23bd8c9ece8287293ab985b2ef825c9cca75fe

  • SHA256

    037bafad190b012365bf62a0f432613a124eeb49cd79139b573ca2d99c15c60f

  • SHA512

    fa5f5f7d7ac8fbfad079386b16567b5e589244231dc6471cf5bdbe5c89c58fadc689834fad596d86a778e6a3b373d05213114c77f7b3166bbc9ce21950d7cc27

  • SSDEEP

    6144:dcm4FmowdHoSNjAszBd+aQz0ZUx2w/ZmTH1R5h2VaHjmVQh5W6z0OJ0HPopxyzu3:f4wFHoSN1zBjAGUx2w/q1R5h2VumVQhB

Malware Config

Targets

    • Target

      f2d4ff162b750632f51d3b0ad747c2b0_NeikiAnalytics.exe

    • Size

      350KB

    • MD5

      f2d4ff162b750632f51d3b0ad747c2b0

    • SHA1

      7c23bd8c9ece8287293ab985b2ef825c9cca75fe

    • SHA256

      037bafad190b012365bf62a0f432613a124eeb49cd79139b573ca2d99c15c60f

    • SHA512

      fa5f5f7d7ac8fbfad079386b16567b5e589244231dc6471cf5bdbe5c89c58fadc689834fad596d86a778e6a3b373d05213114c77f7b3166bbc9ce21950d7cc27

    • SSDEEP

      6144:dcm4FmowdHoSNjAszBd+aQz0ZUx2w/ZmTH1R5h2VaHjmVQh5W6z0OJ0HPopxyzu3:f4wFHoSN1zBjAGUx2w/q1R5h2VumVQhB

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks