General

  • Target

    47a2ab4fe77bb21a12aa39c23dc29cf0_NeikiAnalytics

  • Size

    143KB

  • Sample

    240509-qr5qhsbh81

  • MD5

    47a2ab4fe77bb21a12aa39c23dc29cf0

  • SHA1

    0b22dfca3d035354a3d76ef5647c9daddbd3a519

  • SHA256

    fd0c40134c6ccac7951207f685c4713629c3228afc7838d0700a29d3104d8953

  • SHA512

    65167cf2c8f32241d46642674396835a8ca67097e4816ef49e84e4b7f04f990094d224cb2a3a96a2c646ba655f324d99a0522f4d02eeb3c00132db1a9671950a

  • SSDEEP

    1536:nL/ZiXU8EuMgIAETHuLtgMf1IoCloUQ5ziJE93isirBUBEVGBtVM2hZV03fca13y:7pCC/OLi77lo3N93bsGfhv0vt3y

Malware Config

Targets

    • Target

      47a2ab4fe77bb21a12aa39c23dc29cf0_NeikiAnalytics

    • Size

      143KB

    • MD5

      47a2ab4fe77bb21a12aa39c23dc29cf0

    • SHA1

      0b22dfca3d035354a3d76ef5647c9daddbd3a519

    • SHA256

      fd0c40134c6ccac7951207f685c4713629c3228afc7838d0700a29d3104d8953

    • SHA512

      65167cf2c8f32241d46642674396835a8ca67097e4816ef49e84e4b7f04f990094d224cb2a3a96a2c646ba655f324d99a0522f4d02eeb3c00132db1a9671950a

    • SSDEEP

      1536:nL/ZiXU8EuMgIAETHuLtgMf1IoCloUQ5ziJE93isirBUBEVGBtVM2hZV03fca13y:7pCC/OLi77lo3N93bsGfhv0vt3y

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks