General

  • Target

    40e2f34100c38b756c3aaa53e9322e00_NeikiAnalytics

  • Size

    161KB

  • Sample

    240509-qgg7gaeb78

  • MD5

    40e2f34100c38b756c3aaa53e9322e00

  • SHA1

    a6ca13ec3bc79380a5eeb25d6105924fc23fe0c0

  • SHA256

    6bf9cc08dded6cedcc4ca6904c918b4c46879b425265f2d7cbae231dc3808060

  • SHA512

    be8d3f1e63b49931d375baef4eeadcd66e69d8b8b9e89a34d46e142b8b59f82d2840bd267ec2804640ed300b28a754cf02fcf730f9984f8568784b4142357eca

  • SSDEEP

    3072:7BIO3/f3eIfVTa7TB58kvVwtCJXeex7rrIRZK8K8/kv:7BI0/eIdMTB58kvVwtmeetrIyR

Malware Config

Targets

    • Target

      40e2f34100c38b756c3aaa53e9322e00_NeikiAnalytics

    • Size

      161KB

    • MD5

      40e2f34100c38b756c3aaa53e9322e00

    • SHA1

      a6ca13ec3bc79380a5eeb25d6105924fc23fe0c0

    • SHA256

      6bf9cc08dded6cedcc4ca6904c918b4c46879b425265f2d7cbae231dc3808060

    • SHA512

      be8d3f1e63b49931d375baef4eeadcd66e69d8b8b9e89a34d46e142b8b59f82d2840bd267ec2804640ed300b28a754cf02fcf730f9984f8568784b4142357eca

    • SSDEEP

      3072:7BIO3/f3eIfVTa7TB58kvVwtCJXeex7rrIRZK8K8/kv:7BI0/eIdMTB58kvVwtmeetrIyR

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks