General

  • Target

    3a52d9d86e561b53692d920c869c7850_NeikiAnalytics

  • Size

    1000KB

  • Sample

    240509-p6p3yaae8v

  • MD5

    3a52d9d86e561b53692d920c869c7850

  • SHA1

    a718895234db5aeae32f165172e97818270a8057

  • SHA256

    0b9f0f38cae76100c836e867edba4f111fc8c385396a1cf5a2f67254e103253c

  • SHA512

    f7413dbf8215fa0eb45b7dc3de1d544b8cb3b7ea4d76df1781d2e892e5dfed8b8e1ac1250499680c5b59fff2e1f571f4b051e3d31daf9f9dc17336685cff30b2

  • SSDEEP

    12288:vR78KxyItHBFLPj3TmLnWrOxNuxC97hFq9o7:5NUItHBFLPj368MoC9Dq9o7

Malware Config

Targets

    • Target

      3a52d9d86e561b53692d920c869c7850_NeikiAnalytics

    • Size

      1000KB

    • MD5

      3a52d9d86e561b53692d920c869c7850

    • SHA1

      a718895234db5aeae32f165172e97818270a8057

    • SHA256

      0b9f0f38cae76100c836e867edba4f111fc8c385396a1cf5a2f67254e103253c

    • SHA512

      f7413dbf8215fa0eb45b7dc3de1d544b8cb3b7ea4d76df1781d2e892e5dfed8b8e1ac1250499680c5b59fff2e1f571f4b051e3d31daf9f9dc17336685cff30b2

    • SSDEEP

      12288:vR78KxyItHBFLPj3TmLnWrOxNuxC97hFq9o7:5NUItHBFLPj368MoC9Dq9o7

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks