General

  • Target

    4cafdda6efa097d89a7065f3fee8da20_NeikiAnalytics

  • Size

    208KB

  • Sample

    240509-q2w65afd99

  • MD5

    4cafdda6efa097d89a7065f3fee8da20

  • SHA1

    be313127b393f261375b5cda72abfa6130fc0900

  • SHA256

    3b30f75bec7fce9a8a1bad3e53ec47b50274eeee750716b1ae5b04cb75801430

  • SHA512

    8909fc0a2b5ca52033ee24e3d6c897e8eaef5a9b1acba8b3f8e117ec9c1e26e5b6792cfd2800af031356f2ca941305a210929b111de6b5262e7233e255d6aece

  • SSDEEP

    6144:ocNBZiBombDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55KmC:ocNBABo7ChtMtkM71r1MSXqPix55Kx

Malware Config

Targets

    • Target

      4cafdda6efa097d89a7065f3fee8da20_NeikiAnalytics

    • Size

      208KB

    • MD5

      4cafdda6efa097d89a7065f3fee8da20

    • SHA1

      be313127b393f261375b5cda72abfa6130fc0900

    • SHA256

      3b30f75bec7fce9a8a1bad3e53ec47b50274eeee750716b1ae5b04cb75801430

    • SHA512

      8909fc0a2b5ca52033ee24e3d6c897e8eaef5a9b1acba8b3f8e117ec9c1e26e5b6792cfd2800af031356f2ca941305a210929b111de6b5262e7233e255d6aece

    • SSDEEP

      6144:ocNBZiBombDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55KmC:ocNBABo7ChtMtkM71r1MSXqPix55Kx

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks