General

  • Target

    e509f4659f518b9d833d1b39b507fcf0_NEIKI

  • Size

    121KB

  • Sample

    240509-eefp3sbh99

  • MD5

    e509f4659f518b9d833d1b39b507fcf0

  • SHA1

    3dd6a178e31f3ff7ed130218c7b10ecee1cab0e7

  • SHA256

    e5922b9e10633ab0bc88b6f761e6228086d6f42edbc9b237c82acb1a10a6b4bf

  • SHA512

    f786d33814f2ae0f67d536f15b2862cf631faefc8c8afb9fbfdd0f64a3e846271b57c90e59c01d0973f3c77f3ccd3667e68e449fb58ff10ddce5c315d385ba2c

  • SSDEEP

    1536:ABv/zq4b6dvVNE5QqzfJoroJP7cGJeaA4ll2N7XDbwQXth0FI/uxVCV19zQYOd5W:ABv/zZ2vVNOzOoJD2qW/uSO7AJnD5tvv

Malware Config

Targets

    • Target

      e509f4659f518b9d833d1b39b507fcf0_NEIKI

    • Size

      121KB

    • MD5

      e509f4659f518b9d833d1b39b507fcf0

    • SHA1

      3dd6a178e31f3ff7ed130218c7b10ecee1cab0e7

    • SHA256

      e5922b9e10633ab0bc88b6f761e6228086d6f42edbc9b237c82acb1a10a6b4bf

    • SHA512

      f786d33814f2ae0f67d536f15b2862cf631faefc8c8afb9fbfdd0f64a3e846271b57c90e59c01d0973f3c77f3ccd3667e68e449fb58ff10ddce5c315d385ba2c

    • SSDEEP

      1536:ABv/zq4b6dvVNE5QqzfJoroJP7cGJeaA4ll2N7XDbwQXth0FI/uxVCV19zQYOd5W:ABv/zZ2vVNOzOoJD2qW/uSO7AJnD5tvv

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks