General

  • Target

    4f752822201aab42ea3bd213774b4470_NeikiAnalytics

  • Size

    768KB

  • Sample

    240509-q62bmscg9w

  • MD5

    4f752822201aab42ea3bd213774b4470

  • SHA1

    2bf20751661853ccb76947f333e253cbe7496a1a

  • SHA256

    a311ec3e3973698a209d037d00c9889c06b6471542a105f80dabb6ef3d5238f8

  • SHA512

    75c1e372f051ac8d5aa128be8e0f3fbadcc145a5a422a360c9ed69f83922aff7023f7fff32256cc50ee50c0b2e0277ee737245289abb4ff14ab206579f0ec5d9

  • SSDEEP

    12288:UBwvK6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGJ:UBpq5h3q5htaSHFaZRBEYyqmaf2qwiHP

Malware Config

Targets

    • Target

      4f752822201aab42ea3bd213774b4470_NeikiAnalytics

    • Size

      768KB

    • MD5

      4f752822201aab42ea3bd213774b4470

    • SHA1

      2bf20751661853ccb76947f333e253cbe7496a1a

    • SHA256

      a311ec3e3973698a209d037d00c9889c06b6471542a105f80dabb6ef3d5238f8

    • SHA512

      75c1e372f051ac8d5aa128be8e0f3fbadcc145a5a422a360c9ed69f83922aff7023f7fff32256cc50ee50c0b2e0277ee737245289abb4ff14ab206579f0ec5d9

    • SSDEEP

      12288:UBwvK6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGJ:UBpq5h3q5htaSHFaZRBEYyqmaf2qwiHP

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks