General

  • Target

    e46c1a61cd2f14ffd2fbb2ed285fd7a0_NEIKI

  • Size

    478KB

  • Sample

    240509-ecttxsbh25

  • MD5

    e46c1a61cd2f14ffd2fbb2ed285fd7a0

  • SHA1

    4703efa87405a04f2f33fa9f771cc702184d5b3c

  • SHA256

    e503a876ce8ec3ff396cb1ad3d84b1039aeaae4d6da7d5f607e6b4924c2fb084

  • SHA512

    f8d93facbc7c27177ff28df172a1d24c8fe59985b757a0bc157097339defb1034510e4bd8fd634f09e27d7a521593fe186031a3458f27f73545983f93ef3ebba

  • SSDEEP

    12288:sC+pV6yYPMLnfBJKFbhDwBpV6yYP6Utri+Woh3YRVDDf1LcXD3v+2JFrfzAXmR:n+WMLnfBJKhVwBW6Utri+WoxYRVDr1Ls

Malware Config

Targets

    • Target

      e46c1a61cd2f14ffd2fbb2ed285fd7a0_NEIKI

    • Size

      478KB

    • MD5

      e46c1a61cd2f14ffd2fbb2ed285fd7a0

    • SHA1

      4703efa87405a04f2f33fa9f771cc702184d5b3c

    • SHA256

      e503a876ce8ec3ff396cb1ad3d84b1039aeaae4d6da7d5f607e6b4924c2fb084

    • SHA512

      f8d93facbc7c27177ff28df172a1d24c8fe59985b757a0bc157097339defb1034510e4bd8fd634f09e27d7a521593fe186031a3458f27f73545983f93ef3ebba

    • SSDEEP

      12288:sC+pV6yYPMLnfBJKFbhDwBpV6yYP6Utri+Woh3YRVDDf1LcXD3v+2JFrfzAXmR:n+WMLnfBJKhVwBW6Utri+WoxYRVDr1Ls

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks