General

  • Target

    e3725ee362f1974a9f82d9770897c0e0_NEIKI

  • Size

    329KB

  • Sample

    240509-eaqpgsgg7z

  • MD5

    e3725ee362f1974a9f82d9770897c0e0

  • SHA1

    dee1a8db2bf6ac6567e18dad3ffbdd8eb7d74cf1

  • SHA256

    f8d9ed0a01a4070f75302456780127283da5c9f517d5bed855c8d36ca72fdb12

  • SHA512

    3a32b8b877546f5fdadf1bd38423ed1758e3746e2659a4aaf23d5bae181791e37683164e867549d0e62100d8f81bc95cbf3ca3c9660bee024d53a2124c5fbf76

  • SSDEEP

    6144:yC22IQcp5Sdws+H3Lb+Qw/WYgFIgsh0KXoQr8jTQjewInBIE1+J3RzAHV+EueR2F:yC22IZ557LKQweY0sam38vZwIBIE1+Jx

Malware Config

Targets

    • Target

      e3725ee362f1974a9f82d9770897c0e0_NEIKI

    • Size

      329KB

    • MD5

      e3725ee362f1974a9f82d9770897c0e0

    • SHA1

      dee1a8db2bf6ac6567e18dad3ffbdd8eb7d74cf1

    • SHA256

      f8d9ed0a01a4070f75302456780127283da5c9f517d5bed855c8d36ca72fdb12

    • SHA512

      3a32b8b877546f5fdadf1bd38423ed1758e3746e2659a4aaf23d5bae181791e37683164e867549d0e62100d8f81bc95cbf3ca3c9660bee024d53a2124c5fbf76

    • SSDEEP

      6144:yC22IQcp5Sdws+H3Lb+Qw/WYgFIgsh0KXoQr8jTQjewInBIE1+J3RzAHV+EueR2F:yC22IZ557LKQweY0sam38vZwIBIE1+Jx

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks