General

  • Target

    e5377af4fc80d4c4bcb66154bcfdbeb0_NEIKI

  • Size

    1.3MB

  • Sample

    240509-eesdwahb4t

  • MD5

    e5377af4fc80d4c4bcb66154bcfdbeb0

  • SHA1

    ca11f8d83c07424048bd0b7d0478eafe651740bd

  • SHA256

    d95a73c5de0e2c88c5f4019a64a03dfc36255732b63733ec69dec172aa2dddde

  • SHA512

    a7c5c7cdbbe7cbb9f51f372d130e0cfde75d3d14cfde44798795a56d5069f561273be0f3313c3a01c7845c58a0c2835d0663f900512a8a642123f90a5e0cf068

  • SSDEEP

    24576:a4Xvr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:9XkB9f0VP91v92W805IPSOdKgzEoxrl0

Malware Config

Targets

    • Target

      e5377af4fc80d4c4bcb66154bcfdbeb0_NEIKI

    • Size

      1.3MB

    • MD5

      e5377af4fc80d4c4bcb66154bcfdbeb0

    • SHA1

      ca11f8d83c07424048bd0b7d0478eafe651740bd

    • SHA256

      d95a73c5de0e2c88c5f4019a64a03dfc36255732b63733ec69dec172aa2dddde

    • SHA512

      a7c5c7cdbbe7cbb9f51f372d130e0cfde75d3d14cfde44798795a56d5069f561273be0f3313c3a01c7845c58a0c2835d0663f900512a8a642123f90a5e0cf068

    • SSDEEP

      24576:a4Xvr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:9XkB9f0VP91v92W805IPSOdKgzEoxrl0

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks