General

  • Target

    e4ffdf82f7c21c08c47ba782c9e618f0_NEIKI

  • Size

    368KB

  • Sample

    240509-ed98ashb2s

  • MD5

    e4ffdf82f7c21c08c47ba782c9e618f0

  • SHA1

    13d56ac18be8c500fda8ff6654c193534ad7e2d1

  • SHA256

    cad6c96f096953d863e42796ab3282f10a61561f4035f1515b01514844a235ca

  • SHA512

    06d5f79b03859bf50d0067cc500ce64305f40ad6468c8614152d1769c7f9c06c8ef216a99da13adac81951cfd2c0bdd3e0736cacad6c405978a7df0d27b3c481

  • SSDEEP

    6144:8ooJdr2hxH7E4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9t:pApcx4aAD6RrI1+lDMEAD6Rr2NWL

Malware Config

Targets

    • Target

      e4ffdf82f7c21c08c47ba782c9e618f0_NEIKI

    • Size

      368KB

    • MD5

      e4ffdf82f7c21c08c47ba782c9e618f0

    • SHA1

      13d56ac18be8c500fda8ff6654c193534ad7e2d1

    • SHA256

      cad6c96f096953d863e42796ab3282f10a61561f4035f1515b01514844a235ca

    • SHA512

      06d5f79b03859bf50d0067cc500ce64305f40ad6468c8614152d1769c7f9c06c8ef216a99da13adac81951cfd2c0bdd3e0736cacad6c405978a7df0d27b3c481

    • SSDEEP

      6144:8ooJdr2hxH7E4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9t:pApcx4aAD6RrI1+lDMEAD6Rr2NWL

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks