General

  • Target

    d5c4e29f31a4538cdce48ab52df7dbe0_NEIKI

  • Size

    270KB

  • Sample

    240509-dc6ytahd66

  • MD5

    d5c4e29f31a4538cdce48ab52df7dbe0

  • SHA1

    1df9d1f2f436393469c16422e76de694f530223a

  • SHA256

    342b5a1968ecdc91b995700cbe6114ae0d7229831622723639d43fcc34cd2cce

  • SHA512

    e72113e3731837a5c4e309a29ff5720510824ec84fb364704a653527ca21e35082a6af010c73ee6e10515dca94fa582338a73bef7b39636e948fa73a70a4a295

  • SSDEEP

    6144:I7FXvbdmbJy6hRNjpck4MetpS+f2uXLO+AGb+oPri2O3py69mNoRqzO5MnNYx:I7FXvb96hb2XtpD2ub7A2Vri730697qA

Malware Config

Targets

    • Target

      d5c4e29f31a4538cdce48ab52df7dbe0_NEIKI

    • Size

      270KB

    • MD5

      d5c4e29f31a4538cdce48ab52df7dbe0

    • SHA1

      1df9d1f2f436393469c16422e76de694f530223a

    • SHA256

      342b5a1968ecdc91b995700cbe6114ae0d7229831622723639d43fcc34cd2cce

    • SHA512

      e72113e3731837a5c4e309a29ff5720510824ec84fb364704a653527ca21e35082a6af010c73ee6e10515dca94fa582338a73bef7b39636e948fa73a70a4a295

    • SSDEEP

      6144:I7FXvbdmbJy6hRNjpck4MetpS+f2uXLO+AGb+oPri2O3py69mNoRqzO5MnNYx:I7FXvb96hb2XtpD2ub7A2Vri730697qA

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks