General

  • Target

    e8afea378cca311d76ef8e9e2125de10_NEIKI

  • Size

    3.7MB

  • Sample

    240509-emxzbsce54

  • MD5

    e8afea378cca311d76ef8e9e2125de10

  • SHA1

    27ad5382417d9345ae578b7cad7126ecadfe0dff

  • SHA256

    cdcd5b2f260b50902cfb34e9cfbb32873dca418e09a22b5dcca98af6bf9e4cd4

  • SHA512

    2585fef1eb4dc1a8defe42b72319be9a0bb31f54735defea3e83fbce94cb2151b91ec1ddcbd9bf61a9fd4fe552b5ba54dd2c04dd0e0c95190108e4f2ff4a4337

  • SSDEEP

    24576:w6X1q5h3q5hkntq5S6X1q5h3q5htaSHFaZRBEYyqmaf2qwiHPKgRC4gvGZl6snA:w6Gnh6HaSHFaZRBEYyqmS2DiHPKQgm

Malware Config

Targets

    • Target

      e8afea378cca311d76ef8e9e2125de10_NEIKI

    • Size

      3.7MB

    • MD5

      e8afea378cca311d76ef8e9e2125de10

    • SHA1

      27ad5382417d9345ae578b7cad7126ecadfe0dff

    • SHA256

      cdcd5b2f260b50902cfb34e9cfbb32873dca418e09a22b5dcca98af6bf9e4cd4

    • SHA512

      2585fef1eb4dc1a8defe42b72319be9a0bb31f54735defea3e83fbce94cb2151b91ec1ddcbd9bf61a9fd4fe552b5ba54dd2c04dd0e0c95190108e4f2ff4a4337

    • SSDEEP

      24576:w6X1q5h3q5hkntq5S6X1q5h3q5htaSHFaZRBEYyqmaf2qwiHPKgRC4gvGZl6snA:w6Gnh6HaSHFaZRBEYyqmS2DiHPKQgm

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks