General

  • Target

    d851f2ab2579ea59b046e2d2af7dbf30_NEIKI

  • Size

    340KB

  • Sample

    240509-djxnqahg98

  • MD5

    d851f2ab2579ea59b046e2d2af7dbf30

  • SHA1

    62f32aef34941f69011b0bda43350e66e5cac0f9

  • SHA256

    ecfb849c9822814f4c7897e86d8917484efb1b8cddf755a04a97a5019ade4ec4

  • SHA512

    036ff5dca8dded464c1164d651c7b1b0535ec42f415a743c94d468aaf72efea5c7065cd4eeab281c27eb57e956cd41bc0f26b71afe55da9e11a21b1998edefa6

  • SSDEEP

    6144:beyQ8oy6UbqIyedZwlNPjLs+H8rtMsQBJyJyymeH:bhQly6MyGZwlNPjLYRMsXJvmeH

Malware Config

Targets

    • Target

      d851f2ab2579ea59b046e2d2af7dbf30_NEIKI

    • Size

      340KB

    • MD5

      d851f2ab2579ea59b046e2d2af7dbf30

    • SHA1

      62f32aef34941f69011b0bda43350e66e5cac0f9

    • SHA256

      ecfb849c9822814f4c7897e86d8917484efb1b8cddf755a04a97a5019ade4ec4

    • SHA512

      036ff5dca8dded464c1164d651c7b1b0535ec42f415a743c94d468aaf72efea5c7065cd4eeab281c27eb57e956cd41bc0f26b71afe55da9e11a21b1998edefa6

    • SSDEEP

      6144:beyQ8oy6UbqIyedZwlNPjLs+H8rtMsQBJyJyymeH:bhQly6MyGZwlNPjLYRMsXJvmeH

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks