General

  • Target

    d7a264c2219b665a7ef046f46473c8d0_NEIKI

  • Size

    226KB

  • Sample

    240509-dg8cfahg22

  • MD5

    d7a264c2219b665a7ef046f46473c8d0

  • SHA1

    186d69390497b9b5aa0b1c2e8795dbe7f84c956a

  • SHA256

    1781ccf347b767aa6aab7b41dc139e5044a20dbebdd39ee26aa3428e72a867c5

  • SHA512

    40015b36b91d466d8f8e0f17189125955c9c5b90308400ad41fec78cb7498fa36d04e44f49c4f649052bc39658aff49971a02e7e7db5f689389fd47d58740f4d

  • SSDEEP

    6144:jvNzUzbF68H3S8+b6uyptXIi9u/mp8saZHRD4v4M84Z9YkF/GeHNHyORQdcIKt8:jvw68XS8+d8HamysaZHRD44M3ZzF/GeG

Malware Config

Targets

    • Target

      d7a264c2219b665a7ef046f46473c8d0_NEIKI

    • Size

      226KB

    • MD5

      d7a264c2219b665a7ef046f46473c8d0

    • SHA1

      186d69390497b9b5aa0b1c2e8795dbe7f84c956a

    • SHA256

      1781ccf347b767aa6aab7b41dc139e5044a20dbebdd39ee26aa3428e72a867c5

    • SHA512

      40015b36b91d466d8f8e0f17189125955c9c5b90308400ad41fec78cb7498fa36d04e44f49c4f649052bc39658aff49971a02e7e7db5f689389fd47d58740f4d

    • SSDEEP

      6144:jvNzUzbF68H3S8+b6uyptXIi9u/mp8saZHRD4v4M84Z9YkF/GeHNHyORQdcIKt8:jvw68XS8+d8HamysaZHRD44M3ZzF/GeG

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Modifies visibility of file extensions in Explorer

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks