General

  • Target

    436d7e96774eac03f1260432e263a6c0_NeikiAnalytics

  • Size

    640KB

  • Sample

    240509-qksglsbe3x

  • MD5

    436d7e96774eac03f1260432e263a6c0

  • SHA1

    f59b1712697d269181b7ee8626b3a03a38b078ba

  • SHA256

    5cfa47df39197f9237574180fce297c8de8352379b1615fb37988ee444b27f98

  • SHA512

    d55eb59a3a4cf30de87ad145434ea064257a196f069c33a6c6e4b7f5f8b568c76a348b0df51144e044968d465383a8f3e4fb33192aeefb5b4f92716d8e813bba

  • SSDEEP

    12288:cyF7OCRodXHaINIVIIVy2oIvPKiK13fS2hEYM9RIPk:cyFBRodXHfNIVIIVy2jU13fS2hEYM9RJ

Malware Config

Targets

    • Target

      436d7e96774eac03f1260432e263a6c0_NeikiAnalytics

    • Size

      640KB

    • MD5

      436d7e96774eac03f1260432e263a6c0

    • SHA1

      f59b1712697d269181b7ee8626b3a03a38b078ba

    • SHA256

      5cfa47df39197f9237574180fce297c8de8352379b1615fb37988ee444b27f98

    • SHA512

      d55eb59a3a4cf30de87ad145434ea064257a196f069c33a6c6e4b7f5f8b568c76a348b0df51144e044968d465383a8f3e4fb33192aeefb5b4f92716d8e813bba

    • SSDEEP

      12288:cyF7OCRodXHaINIVIIVy2oIvPKiK13fS2hEYM9RIPk:cyFBRodXHfNIVIIVy2jU13fS2hEYM9RJ

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks