General

  • Target

    401b0df0d9b93a8cd3914d99de32eed0_NeikiAnalytics

  • Size

    109KB

  • Sample

    240509-qfdsnaeb23

  • MD5

    401b0df0d9b93a8cd3914d99de32eed0

  • SHA1

    d9488fb9b82b5e898f4ce6d9afb5c7494f6f24db

  • SHA256

    968323748bbb7b348af36c3cefd2eb3fd6c046fc82b3550729a96def04edae97

  • SHA512

    b22c2f88818c8fa3b8cbfd965622752c803c63a046f7cfd66bb68ec6487f44895a97fa4395a1ac525beddf8f7e1719f6548ae843cf6f72016e02ed44f552f504

  • SSDEEP

    3072:X3Qvf7syKtKGOlmuIT6rcDOxGJ93LCqwzBu1DjHLMVDqqkSp:Q7sKplmuIT6YDMGJ9Lwtu1DjrFqh

Malware Config

Targets

    • Target

      401b0df0d9b93a8cd3914d99de32eed0_NeikiAnalytics

    • Size

      109KB

    • MD5

      401b0df0d9b93a8cd3914d99de32eed0

    • SHA1

      d9488fb9b82b5e898f4ce6d9afb5c7494f6f24db

    • SHA256

      968323748bbb7b348af36c3cefd2eb3fd6c046fc82b3550729a96def04edae97

    • SHA512

      b22c2f88818c8fa3b8cbfd965622752c803c63a046f7cfd66bb68ec6487f44895a97fa4395a1ac525beddf8f7e1719f6548ae843cf6f72016e02ed44f552f504

    • SSDEEP

      3072:X3Qvf7syKtKGOlmuIT6rcDOxGJ93LCqwzBu1DjHLMVDqqkSp:Q7sKplmuIT6YDMGJ9Lwtu1DjrFqh

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks