General

  • Target

    eaaa65075b832c0dbe3f707ed1ada600_NEIKI

  • Size

    229KB

  • Sample

    240509-esd4each25

  • MD5

    eaaa65075b832c0dbe3f707ed1ada600

  • SHA1

    f392b1df887344b52a3ae611381a704ddb9b3317

  • SHA256

    db14961e396aee078b0bb7a90ac64e7d127306fb562804bc9a7c022af99cc502

  • SHA512

    724a047b55542d58b893f68281100e80b2241fdb9660247c1b181de2618b5ea15ce6057e0d647c98318820b0cb3b41eae6b27a3940ce07e13a44b9df39271605

  • SSDEEP

    6144:qr8HQWldoFUG271+HZ/pvkym/89bYEwPhCKvav:b9ldoFE7AIfFfvav

Malware Config

Targets

    • Target

      eaaa65075b832c0dbe3f707ed1ada600_NEIKI

    • Size

      229KB

    • MD5

      eaaa65075b832c0dbe3f707ed1ada600

    • SHA1

      f392b1df887344b52a3ae611381a704ddb9b3317

    • SHA256

      db14961e396aee078b0bb7a90ac64e7d127306fb562804bc9a7c022af99cc502

    • SHA512

      724a047b55542d58b893f68281100e80b2241fdb9660247c1b181de2618b5ea15ce6057e0d647c98318820b0cb3b41eae6b27a3940ce07e13a44b9df39271605

    • SSDEEP

      6144:qr8HQWldoFUG271+HZ/pvkym/89bYEwPhCKvav:b9ldoFE7AIfFfvav

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks