General

  • Target

    3900ceba76f70371a01efea427d5a6d0_NeikiAnalytics

  • Size

    276KB

  • Sample

    240509-p4wspsdd24

  • MD5

    3900ceba76f70371a01efea427d5a6d0

  • SHA1

    a701696f917771c00881657da109ab5ef6199d2c

  • SHA256

    b8e7b1e4c84901880aafe1c3764a46479da72f3befa4121c94fa2c8ebb912b31

  • SHA512

    ec40d087ad09c05bc3a0857acb2cb1e85526ae06c7164dafa64199b046f51fb391f3d594ecd55730b17504cbf867a7384b0d1a781ad41c277db454980217940d

  • SSDEEP

    6144:eUiTPIyIXFdWZHEFJ7aWN1rtMsQBOSGaF+:eUiT5u2HEGWN1RMs1S7

Malware Config

Targets

    • Target

      3900ceba76f70371a01efea427d5a6d0_NeikiAnalytics

    • Size

      276KB

    • MD5

      3900ceba76f70371a01efea427d5a6d0

    • SHA1

      a701696f917771c00881657da109ab5ef6199d2c

    • SHA256

      b8e7b1e4c84901880aafe1c3764a46479da72f3befa4121c94fa2c8ebb912b31

    • SHA512

      ec40d087ad09c05bc3a0857acb2cb1e85526ae06c7164dafa64199b046f51fb391f3d594ecd55730b17504cbf867a7384b0d1a781ad41c277db454980217940d

    • SSDEEP

      6144:eUiTPIyIXFdWZHEFJ7aWN1rtMsQBOSGaF+:eUiT5u2HEGWN1RMs1S7

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks