General

  • Target

    dfaf2325ac6dcdb525f967c4be6fc840_NEIKI

  • Size

    259KB

  • MD5

    dfaf2325ac6dcdb525f967c4be6fc840

  • SHA1

    d739e9d52f2561d1b2ee67be0be4b27512992b43

  • SHA256

    8ded563b81abe772f8e0d1deb34ee72c803b5c5083182115d2d6adf875517c4c

  • SHA512

    2bc75d2f66f079dd2b4c2d59c038f699468e41160d53541b76749d122e704f0427da4635434355ffb8adf03c11c4305539647e38a8b3e2e390adde0cdc505782

  • SSDEEP

    6144:mcm4FmowdHoS1IOnHoDTmhraHcpOFltH4t0P4EhTKCi5RQc7EC:I4wFHoSKOHYT6eFpguen5Sc7h

Malware Config

Signatures

  • Berbew family
  • Malware Dropper & Backdoor - Berbew 1 IoCs

    Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • dfaf2325ac6dcdb525f967c4be6fc840_NEIKI
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections