General

  • Target

    45fa681903b1aa6a8fcc4dc2d38346a0_NeikiAnalytics

  • Size

    239KB

  • Sample

    240509-qpm3paef75

  • MD5

    45fa681903b1aa6a8fcc4dc2d38346a0

  • SHA1

    8c2bb8a0bae05126afb3f76b582ad24d03ce5dd5

  • SHA256

    4df096ab73d83975a4b38a8d660f18a1e147c5e26ea2e598c754878066fd2aba

  • SHA512

    76207af6b6befe2de9a055afc53700da93c743bef6de2213a1550d0ea2703895000b82c247ac6d900dd69e0dcabdc40dc67327fc0532441be490d967ef9302e8

  • SSDEEP

    3072:ydEUfKj8BYbDiC1ZTK7sxtLUIGT9kXH0hga4PjBy2XiXV/mwTwyg4K+mpPNHdUp8:yUSiZTK40V2a4PdyoeV/Hwz4zmpPNip8

Malware Config

Targets

    • Target

      45fa681903b1aa6a8fcc4dc2d38346a0_NeikiAnalytics

    • Size

      239KB

    • MD5

      45fa681903b1aa6a8fcc4dc2d38346a0

    • SHA1

      8c2bb8a0bae05126afb3f76b582ad24d03ce5dd5

    • SHA256

      4df096ab73d83975a4b38a8d660f18a1e147c5e26ea2e598c754878066fd2aba

    • SHA512

      76207af6b6befe2de9a055afc53700da93c743bef6de2213a1550d0ea2703895000b82c247ac6d900dd69e0dcabdc40dc67327fc0532441be490d967ef9302e8

    • SSDEEP

      3072:ydEUfKj8BYbDiC1ZTK7sxtLUIGT9kXH0hga4PjBy2XiXV/mwTwyg4K+mpPNHdUp8:yUSiZTK40V2a4PdyoeV/Hwz4zmpPNip8

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks