General

  • Target

    3eb51f120f8bd434e0cc359e746ce4e0_NeikiAnalytics

  • Size

    362KB

  • Sample

    240509-qc85dsdh96

  • MD5

    3eb51f120f8bd434e0cc359e746ce4e0

  • SHA1

    ff84b2cb6726314c7916d92fb160dabe780bb0a3

  • SHA256

    27bd3bd39bbc0f5ad56f2f348b48acc9a850c0c363e634cf1ba20e23560679f8

  • SHA512

    6ade75d1dd6958dc2077a75f4bea760435759fb3a3f80fc423127d2127b58977bf32a27892adc8900ed6864d063428e77e4adf6f9723e7c599db2c090fd59424

  • SSDEEP

    6144:/rwwc4rZtGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxriE5:/SutmuMtrQ07nGWxWSsmiMyh95r5OPGf

Malware Config

Targets

    • Target

      3eb51f120f8bd434e0cc359e746ce4e0_NeikiAnalytics

    • Size

      362KB

    • MD5

      3eb51f120f8bd434e0cc359e746ce4e0

    • SHA1

      ff84b2cb6726314c7916d92fb160dabe780bb0a3

    • SHA256

      27bd3bd39bbc0f5ad56f2f348b48acc9a850c0c363e634cf1ba20e23560679f8

    • SHA512

      6ade75d1dd6958dc2077a75f4bea760435759fb3a3f80fc423127d2127b58977bf32a27892adc8900ed6864d063428e77e4adf6f9723e7c599db2c090fd59424

    • SSDEEP

      6144:/rwwc4rZtGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxriE5:/SutmuMtrQ07nGWxWSsmiMyh95r5OPGf

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks