General

  • Target

    d4d300723ce4af20c2fc4086d9e08410_NEIKI

  • Size

    1.5MB

  • Sample

    240509-da5yqshc44

  • MD5

    d4d300723ce4af20c2fc4086d9e08410

  • SHA1

    9e5c563617dc5aabc982cb365b8694f75bbdd965

  • SHA256

    8aac444fe44d48e976fb6ed05d9ea805efb80f6fa19663a22649633060495e29

  • SHA512

    954e820376abd1ce2676a572c53194d50555ad87fcfb6ba74bcd410782fc9e36900da575ae4501f5e9996af31be3010f9f658b9e6688f3be8697f8f952410752

  • SSDEEP

    24576:llT4Ph2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHp3oWtec+fwv4cXcyx:lIbazR0vKLXZnec+Yv4cXcy6l6mFndwn

Malware Config

Targets

    • Target

      d4d300723ce4af20c2fc4086d9e08410_NEIKI

    • Size

      1.5MB

    • MD5

      d4d300723ce4af20c2fc4086d9e08410

    • SHA1

      9e5c563617dc5aabc982cb365b8694f75bbdd965

    • SHA256

      8aac444fe44d48e976fb6ed05d9ea805efb80f6fa19663a22649633060495e29

    • SHA512

      954e820376abd1ce2676a572c53194d50555ad87fcfb6ba74bcd410782fc9e36900da575ae4501f5e9996af31be3010f9f658b9e6688f3be8697f8f952410752

    • SSDEEP

      24576:llT4Ph2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHp3oWtec+fwv4cXcyx:lIbazR0vKLXZnec+Yv4cXcy6l6mFndwn

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks