General

  • Target

    3b87c8985e68e6a01faaedecea4f65d0_NeikiAnalytics

  • Size

    1.1MB

  • Sample

    240509-p8c66adf26

  • MD5

    3b87c8985e68e6a01faaedecea4f65d0

  • SHA1

    540f404d8932ee6a64f9defdf58d4e008ae94ed1

  • SHA256

    d533da7ff21b2fee481558072f00688a5eb8acd9f0184bac95fdad0c1ff6a797

  • SHA512

    db1b936219f86ee28842a2d0f140fe9aeb6ae1aac8b83bd7312af7ec370faf3af4f136b6fc929003d7e39dfa6666c164c28ffc0409a7527d97309531cc4431fc

  • SSDEEP

    24576:IrQg5Wm0BmmvFimm0MTP7hm0BmmvFimm0HkEyDucEQX:mQg5SiLi0kEyDucEQX

Malware Config

Targets

    • Target

      3b87c8985e68e6a01faaedecea4f65d0_NeikiAnalytics

    • Size

      1.1MB

    • MD5

      3b87c8985e68e6a01faaedecea4f65d0

    • SHA1

      540f404d8932ee6a64f9defdf58d4e008ae94ed1

    • SHA256

      d533da7ff21b2fee481558072f00688a5eb8acd9f0184bac95fdad0c1ff6a797

    • SHA512

      db1b936219f86ee28842a2d0f140fe9aeb6ae1aac8b83bd7312af7ec370faf3af4f136b6fc929003d7e39dfa6666c164c28ffc0409a7527d97309531cc4431fc

    • SSDEEP

      24576:IrQg5Wm0BmmvFimm0MTP7hm0BmmvFimm0HkEyDucEQX:mQg5SiLi0kEyDucEQX

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks