General

  • Target

    e4f6c095403fff652d6d6d995b70e980_NEIKI

  • Size

    128KB

  • Sample

    240509-ed3s8abh83

  • MD5

    e4f6c095403fff652d6d6d995b70e980

  • SHA1

    8bb1129bf86579dad72dfe87c9f4d5e93a349682

  • SHA256

    a65fa7f6ee9edffd70b39530cda040333e0e9dbb0f914ae4799aa2c8f1f7bec7

  • SHA512

    b63bc9ad402857ffc39892e4f31d9ef52f041604db477ea50d4d42912fea166f84bfccd3a0af9b6fa26e0f2d903228213c24892bad4c9928b247189646e90662

  • SSDEEP

    3072:uZQ1Rk1R9urd0Orf7qoBXlmW2wS7IrHrYj:j1y1qrmBA1mHwMOHm

Malware Config

Targets

    • Target

      e4f6c095403fff652d6d6d995b70e980_NEIKI

    • Size

      128KB

    • MD5

      e4f6c095403fff652d6d6d995b70e980

    • SHA1

      8bb1129bf86579dad72dfe87c9f4d5e93a349682

    • SHA256

      a65fa7f6ee9edffd70b39530cda040333e0e9dbb0f914ae4799aa2c8f1f7bec7

    • SHA512

      b63bc9ad402857ffc39892e4f31d9ef52f041604db477ea50d4d42912fea166f84bfccd3a0af9b6fa26e0f2d903228213c24892bad4c9928b247189646e90662

    • SSDEEP

      3072:uZQ1Rk1R9urd0Orf7qoBXlmW2wS7IrHrYj:j1y1qrmBA1mHwMOHm

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks