General

  • Target

    fa8b84f4636a0b4876c45ff23f855f50_NEIKI

  • Size

    5.8MB

  • MD5

    fa8b84f4636a0b4876c45ff23f855f50

  • SHA1

    252adb61221762e461f2798857169c53ff2a0f85

  • SHA256

    7ab7da548d2aad11fe4f48c4cf7d2348903f3319433d588fa2983d62d80bc6f6

  • SHA512

    ec239704851a48250f94f16091e6a280017a7638ab016a11bd016a5110e3dd10212b6348450840ab578f4640b06f5cf8f9e9fba1f885953003899252eb0a7390

  • SSDEEP

    98304:66Gn9646r6HaSHFaZRBEYyqmS2DiHPKQgmZ0aUgUjvha/4wzlF65iPs:IaSHFaZRBEYyqmS2DiHPKQgwUgUjvhoM

Malware Config

Signatures

  • Berbew family
  • Malware Dropper & Backdoor - Berbew 1 IoCs

    Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • fa8b84f4636a0b4876c45ff23f855f50_NEIKI
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections