General

  • Target

    3ff60e0db3c8a418d57529e85b52de20_NeikiAnalytics

  • Size

    368KB

  • Sample

    240509-qe4yfsea94

  • MD5

    3ff60e0db3c8a418d57529e85b52de20

  • SHA1

    1c8ffee4faef4685b6283a093c747f6570bfca17

  • SHA256

    a90998591cb236b08266d5ea570b4399f8ecc766e96ab933dceea8574ca680bc

  • SHA512

    840b384143b849bf7a51ee1350ff47cc8a4b1de88bf4cefd60271e75988206eaa780880c20df2dd56b2fd60e4f152ff0c47c79928560bbec72ca816ac33493ec

  • SSDEEP

    6144:xJltyvgl9lTjZXvEQo9dfJBEdKFckUQ/4TIHD4xutM3VOEIuV5t6R+0I/VzogZW:xtqCT9XvEhdfJkKSkU3kHyuaRB5t6k0z

Malware Config

Targets

    • Target

      3ff60e0db3c8a418d57529e85b52de20_NeikiAnalytics

    • Size

      368KB

    • MD5

      3ff60e0db3c8a418d57529e85b52de20

    • SHA1

      1c8ffee4faef4685b6283a093c747f6570bfca17

    • SHA256

      a90998591cb236b08266d5ea570b4399f8ecc766e96ab933dceea8574ca680bc

    • SHA512

      840b384143b849bf7a51ee1350ff47cc8a4b1de88bf4cefd60271e75988206eaa780880c20df2dd56b2fd60e4f152ff0c47c79928560bbec72ca816ac33493ec

    • SSDEEP

      6144:xJltyvgl9lTjZXvEQo9dfJBEdKFckUQ/4TIHD4xutM3VOEIuV5t6R+0I/VzogZW:xtqCT9XvEhdfJkKSkU3kHyuaRB5t6k0z

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks