General

  • Target

    e9c05323f36df370a686869e0642ab60_NEIKI

  • Size

    226KB

  • Sample

    240509-eqf5zscf89

  • MD5

    e9c05323f36df370a686869e0642ab60

  • SHA1

    9d19c009c01cdd5cf0617960b3fe39eff279fcc2

  • SHA256

    8c75f0463bf4150de490bb8b90c25a844133d8ce20b15ae81fe66a6464bc6c4b

  • SHA512

    dc7022f3285361f701a7a10da9d414d74fa8743fba1e0df3cd71d2fed9aea9913afff83577159935967700a6d927af1e0a708f560cfb8479224dede800917038

  • SSDEEP

    6144:TroO2rSgP982L+mhmYXfxqySSKpRmSKeTk7eT5ABrnL8MdYg:Xerpp+m55IKrEAlnLAg

Malware Config

Targets

    • Target

      e9c05323f36df370a686869e0642ab60_NEIKI

    • Size

      226KB

    • MD5

      e9c05323f36df370a686869e0642ab60

    • SHA1

      9d19c009c01cdd5cf0617960b3fe39eff279fcc2

    • SHA256

      8c75f0463bf4150de490bb8b90c25a844133d8ce20b15ae81fe66a6464bc6c4b

    • SHA512

      dc7022f3285361f701a7a10da9d414d74fa8743fba1e0df3cd71d2fed9aea9913afff83577159935967700a6d927af1e0a708f560cfb8479224dede800917038

    • SSDEEP

      6144:TroO2rSgP982L+mhmYXfxqySSKpRmSKeTk7eT5ABrnL8MdYg:Xerpp+m55IKrEAlnLAg

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks