General

  • Target

    d566286c36630f0b8b522fce6fc593f0_NEIKI

  • Size

    664KB

  • Sample

    240509-dcdx2ahd24

  • MD5

    d566286c36630f0b8b522fce6fc593f0

  • SHA1

    173f4d5f8c0c56b8d3673e950db770c119e998a3

  • SHA256

    9d51d3607316a2a82debaa9efdf69a200db521fbd36b6e72a9415696b73e8eea

  • SHA512

    de5ce90c40d6180259ccec2d865ab60639b8899faf43063ea93b537fca32dce14311e2955b286715db42bd90a9ce217fc1c7eca6fffd93aaa38ab79ccfc32f7c

  • SSDEEP

    12288:Jevl4pV6yYP4rbpV6yYPg058KpV6yYPNUir2MhNl6zX3w9As/xO23WM6tJmDYjm:Jo4W4XWleKWNUir2MhNl6zX3w9As/xOX

Malware Config

Targets

    • Target

      d566286c36630f0b8b522fce6fc593f0_NEIKI

    • Size

      664KB

    • MD5

      d566286c36630f0b8b522fce6fc593f0

    • SHA1

      173f4d5f8c0c56b8d3673e950db770c119e998a3

    • SHA256

      9d51d3607316a2a82debaa9efdf69a200db521fbd36b6e72a9415696b73e8eea

    • SHA512

      de5ce90c40d6180259ccec2d865ab60639b8899faf43063ea93b537fca32dce14311e2955b286715db42bd90a9ce217fc1c7eca6fffd93aaa38ab79ccfc32f7c

    • SSDEEP

      12288:Jevl4pV6yYP4rbpV6yYPg058KpV6yYPNUir2MhNl6zX3w9As/xO23WM6tJmDYjm:Jo4W4XWleKWNUir2MhNl6zX3w9As/xOX

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks