General

  • Target

    d6f5ca1b7c163d9649f9ccbbd0e1ab80_NEIKI

  • Size

    130KB

  • Sample

    240509-dftgwshf35

  • MD5

    d6f5ca1b7c163d9649f9ccbbd0e1ab80

  • SHA1

    516133bf35b0038c6bb68f7ae4a4ab91039402be

  • SHA256

    1e6dc80f071ac106cb4f12a1b931c53451b699affa1c7715b2e559f889062199

  • SHA512

    e577d653af46d53e97ebc9146deb3f6551a9918fdda9f37a384ede4d392478356debd8f8b371e697a0341ee2661a4be4d4550f707ddeedc2dd06a7f403776ef4

  • SSDEEP

    3072:F4NRfbz8xuKzMKZAOg2ESEGk2/BhHmiImXJ2fYdV46nfPyxWhj8NCM/4:qNRsNzXZHgBSEL4BhHmNEcYj9nhV8NCV

Malware Config

Targets

    • Target

      d6f5ca1b7c163d9649f9ccbbd0e1ab80_NEIKI

    • Size

      130KB

    • MD5

      d6f5ca1b7c163d9649f9ccbbd0e1ab80

    • SHA1

      516133bf35b0038c6bb68f7ae4a4ab91039402be

    • SHA256

      1e6dc80f071ac106cb4f12a1b931c53451b699affa1c7715b2e559f889062199

    • SHA512

      e577d653af46d53e97ebc9146deb3f6551a9918fdda9f37a384ede4d392478356debd8f8b371e697a0341ee2661a4be4d4550f707ddeedc2dd06a7f403776ef4

    • SSDEEP

      3072:F4NRfbz8xuKzMKZAOg2ESEGk2/BhHmiImXJ2fYdV46nfPyxWhj8NCM/4:qNRsNzXZHgBSEL4BhHmNEcYj9nhV8NCV

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks