General

  • Target

    d58ea1cc3760e5529bdcb0c300d61070_NEIKI

  • Size

    304KB

  • Sample

    240509-dcq8csee7t

  • MD5

    d58ea1cc3760e5529bdcb0c300d61070

  • SHA1

    a999dc313be4834f82e79b5270747e2df232ce1a

  • SHA256

    4527480fbc2aef5395e7ba2df6de3531a00edf980bf2b9339b8efbe8a2cca05e

  • SHA512

    439c5d4498eb2b2054c1f49b6708581f38cc02006157c31a135da8fdb4bf2973970419bdb8efc9ecc1aa48c100168f2d2f320c7c88c502c58a3c543e96b09186

  • SSDEEP

    6144:88vB7tnTna1FeJLbnCBbC+nVLjOPj194oQAPJiduHyFfeoHiWmVlWaPxqZcNpCLh:pTnwFeJLbnCN3xjOPj1Gg2uHyFfeoHH1

Malware Config

Targets

    • Target

      d58ea1cc3760e5529bdcb0c300d61070_NEIKI

    • Size

      304KB

    • MD5

      d58ea1cc3760e5529bdcb0c300d61070

    • SHA1

      a999dc313be4834f82e79b5270747e2df232ce1a

    • SHA256

      4527480fbc2aef5395e7ba2df6de3531a00edf980bf2b9339b8efbe8a2cca05e

    • SHA512

      439c5d4498eb2b2054c1f49b6708581f38cc02006157c31a135da8fdb4bf2973970419bdb8efc9ecc1aa48c100168f2d2f320c7c88c502c58a3c543e96b09186

    • SSDEEP

      6144:88vB7tnTna1FeJLbnCBbC+nVLjOPj194oQAPJiduHyFfeoHiWmVlWaPxqZcNpCLh:pTnwFeJLbnCN3xjOPj1Gg2uHyFfeoHH1

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks