General

  • Target

    42bbc354dd5c9e8c401a62ba7f587040_NeikiAnalytics

  • Size

    161KB

  • Sample

    240509-qjyx1abd7z

  • MD5

    42bbc354dd5c9e8c401a62ba7f587040

  • SHA1

    2c64c4079ee2885eae6864ea47b2ceaca5cb5914

  • SHA256

    3eed452d1da89b9bd86fff41a462ab61d5e7bed66ef6e17fb901a72c3715d3d4

  • SHA512

    108628758a465b90c841c79276b8382b6ec4e5d9d2958e9376c5968272fccf9dd09ee638a5ece82483e5aca7d14258e0f93bdbff9f6177f46b700583a0cfd85a

  • SSDEEP

    3072:UVYVLIotnwgCT0Vynad2ZGJ3IIVFXBIHkcVwtCJXeex7rrIRZK8K8/kv:mYV8iwAXPXBMkcVwtmeetrIyR

Malware Config

Targets

    • Target

      42bbc354dd5c9e8c401a62ba7f587040_NeikiAnalytics

    • Size

      161KB

    • MD5

      42bbc354dd5c9e8c401a62ba7f587040

    • SHA1

      2c64c4079ee2885eae6864ea47b2ceaca5cb5914

    • SHA256

      3eed452d1da89b9bd86fff41a462ab61d5e7bed66ef6e17fb901a72c3715d3d4

    • SHA512

      108628758a465b90c841c79276b8382b6ec4e5d9d2958e9376c5968272fccf9dd09ee638a5ece82483e5aca7d14258e0f93bdbff9f6177f46b700583a0cfd85a

    • SSDEEP

      3072:UVYVLIotnwgCT0Vynad2ZGJ3IIVFXBIHkcVwtCJXeex7rrIRZK8K8/kv:mYV8iwAXPXBMkcVwtmeetrIyR

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks