General

  • Target

    3edb8666bf4a3c912d49572baa831b50_NeikiAnalytics

  • Size

    177KB

  • Sample

    240509-qdfjgaba9x

  • MD5

    3edb8666bf4a3c912d49572baa831b50

  • SHA1

    5ff4f29dbab082c8a95d95e8d1a7a39ad38d0cd8

  • SHA256

    86ed7dda83c49ce1981db0dadcf0ea2badeb03299e448f5d09b9d4a02891dc20

  • SHA512

    1f797205c7b59834da7d7c23a8f6eb3a9a34c0b9cca75ccf45977d6be08bac00d9ad734b0f6d138b046bceece5e81ee3128a01bfaa0504fd1ab0e06a30cdfe20

  • SSDEEP

    3072:2mdAkghDiWZg3q/haR5sS+vfvLHhjh8g1eGFyOsa:+kOiWZga/harSvLHh98gwG0ON

Malware Config

Targets

    • Target

      3edb8666bf4a3c912d49572baa831b50_NeikiAnalytics

    • Size

      177KB

    • MD5

      3edb8666bf4a3c912d49572baa831b50

    • SHA1

      5ff4f29dbab082c8a95d95e8d1a7a39ad38d0cd8

    • SHA256

      86ed7dda83c49ce1981db0dadcf0ea2badeb03299e448f5d09b9d4a02891dc20

    • SHA512

      1f797205c7b59834da7d7c23a8f6eb3a9a34c0b9cca75ccf45977d6be08bac00d9ad734b0f6d138b046bceece5e81ee3128a01bfaa0504fd1ab0e06a30cdfe20

    • SSDEEP

      3072:2mdAkghDiWZg3q/haR5sS+vfvLHhjh8g1eGFyOsa:+kOiWZga/harSvLHh98gwG0ON

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks