General

  • Target

    44433b9a4e6c652bcd4c6a808c6db500_NeikiAnalytics

  • Size

    227KB

  • Sample

    240509-ql4k9see44

  • MD5

    44433b9a4e6c652bcd4c6a808c6db500

  • SHA1

    c94cdc99add5fe8922311f478eb85cc2bd245737

  • SHA256

    3a64b380b81eaee4c7398cc4a4b00372b0e3c6b30ee6b389343461a23c4d569f

  • SHA512

    e61f73417b3865c1b755fd29eff4edf22b4429400575396b76e53a8ee80664d281add8cb2cd5bdda8a9f5840129f8cb1d73f214569bb6e18e1cb763c2769d871

  • SSDEEP

    3072:8Ji+wdZ/oa0Fydfec4WeyRpwoTRBmDRGGurhUXvBj2QE2HegPelTeIdI7jFHu:4iTo6fetvm7U5j2QE2+g24Id2jFHu

Malware Config

Targets

    • Target

      44433b9a4e6c652bcd4c6a808c6db500_NeikiAnalytics

    • Size

      227KB

    • MD5

      44433b9a4e6c652bcd4c6a808c6db500

    • SHA1

      c94cdc99add5fe8922311f478eb85cc2bd245737

    • SHA256

      3a64b380b81eaee4c7398cc4a4b00372b0e3c6b30ee6b389343461a23c4d569f

    • SHA512

      e61f73417b3865c1b755fd29eff4edf22b4429400575396b76e53a8ee80664d281add8cb2cd5bdda8a9f5840129f8cb1d73f214569bb6e18e1cb763c2769d871

    • SSDEEP

      3072:8Ji+wdZ/oa0Fydfec4WeyRpwoTRBmDRGGurhUXvBj2QE2HegPelTeIdI7jFHu:4iTo6fetvm7U5j2QE2+g24Id2jFHu

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks