General

  • Target

    488247d57e88563b5cc50cea1d480220_NeikiAnalytics

  • Size

    844KB

  • Sample

    240509-qtgfpsca6w

  • MD5

    488247d57e88563b5cc50cea1d480220

  • SHA1

    d36e249062ebbd5808abddea42e88cd0559d9767

  • SHA256

    4b047eda8726ee87a9bb4ff67115b782f0ed34ec0e7fbc68987e4aebbf160345

  • SHA512

    770ad969bf78a8647c782708896a9634fe46ca3dcc6833f24457fa4a56c73a2554bfcf182b418fba0ef598044b54ad6d8fe52eba70e98be84a0c1ac064e0497f

  • SSDEEP

    24576:TyKH5W3Tnbc53cp6p5vihMpQnqrdX72LbY6x46uR/qYglMS:T3H5W3TbGBihw+cdX2x46uhqllMS

Malware Config

Targets

    • Target

      488247d57e88563b5cc50cea1d480220_NeikiAnalytics

    • Size

      844KB

    • MD5

      488247d57e88563b5cc50cea1d480220

    • SHA1

      d36e249062ebbd5808abddea42e88cd0559d9767

    • SHA256

      4b047eda8726ee87a9bb4ff67115b782f0ed34ec0e7fbc68987e4aebbf160345

    • SHA512

      770ad969bf78a8647c782708896a9634fe46ca3dcc6833f24457fa4a56c73a2554bfcf182b418fba0ef598044b54ad6d8fe52eba70e98be84a0c1ac064e0497f

    • SSDEEP

      24576:TyKH5W3Tnbc53cp6p5vihMpQnqrdX72LbY6x46uR/qYglMS:T3H5W3TbGBihw+cdX2x46uhqllMS

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks