General

  • Target

    e7ffb347d16d2e603f0f3c1bbb42caf0_NEIKI

  • Size

    143KB

  • Sample

    240509-elfzeshf2t

  • MD5

    e7ffb347d16d2e603f0f3c1bbb42caf0

  • SHA1

    9ebb83d95e64de011fb3b7269f23bfcc6c1174ca

  • SHA256

    70a53e8718f0fd6bb83f10c5692d861c435277d84e6019172f8753c9119afa0e

  • SHA512

    1053a6c30372c6d7567923206c2085481d7473f047d89292419c4f9892ed644c721e146124bc1652233e5dd8d477f6a2dbe04b32b18323acdba3293b09a1b002

  • SSDEEP

    1536:biFqS16/B0Ik8cswx8haAIw5a82UQ5ziJE93isirBUBEVGBtVM2hZV03fca13y:szPsG8YArv23N93bsGfhv0vt3y

Malware Config

Targets

    • Target

      e7ffb347d16d2e603f0f3c1bbb42caf0_NEIKI

    • Size

      143KB

    • MD5

      e7ffb347d16d2e603f0f3c1bbb42caf0

    • SHA1

      9ebb83d95e64de011fb3b7269f23bfcc6c1174ca

    • SHA256

      70a53e8718f0fd6bb83f10c5692d861c435277d84e6019172f8753c9119afa0e

    • SHA512

      1053a6c30372c6d7567923206c2085481d7473f047d89292419c4f9892ed644c721e146124bc1652233e5dd8d477f6a2dbe04b32b18323acdba3293b09a1b002

    • SSDEEP

      1536:biFqS16/B0Ik8cswx8haAIw5a82UQ5ziJE93isirBUBEVGBtVM2hZV03fca13y:szPsG8YArv23N93bsGfhv0vt3y

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks