General

  • Target

    4a0daacf1489185ff19290dab0ca5580_NeikiAnalytics

  • Size

    135KB

  • Sample

    240509-qxe22scc4t

  • MD5

    4a0daacf1489185ff19290dab0ca5580

  • SHA1

    c7765758ec00b11bdcf24b91633ae8d5190e529c

  • SHA256

    c9dcf05a532e92e2d5ae56aca0c31380ac3afec88990109172fa029d6fd70724

  • SHA512

    e026907ea633e3066339c80bec6c20a4432c32a8eb2f39b333306992a3e0b22cb345a373cb6d9b6ace19ec679c0ccc36bbc678d8e7c63cc637c60d5f0ce19043

  • SSDEEP

    3072:OSqZs07rMQdlNHIFTDK8Qr5+ViKGe7Yfs0a0Uoi:OSR0zl5IFTDK9cViK4fs0l

Malware Config

Targets

    • Target

      4a0daacf1489185ff19290dab0ca5580_NeikiAnalytics

    • Size

      135KB

    • MD5

      4a0daacf1489185ff19290dab0ca5580

    • SHA1

      c7765758ec00b11bdcf24b91633ae8d5190e529c

    • SHA256

      c9dcf05a532e92e2d5ae56aca0c31380ac3afec88990109172fa029d6fd70724

    • SHA512

      e026907ea633e3066339c80bec6c20a4432c32a8eb2f39b333306992a3e0b22cb345a373cb6d9b6ace19ec679c0ccc36bbc678d8e7c63cc637c60d5f0ce19043

    • SSDEEP

      3072:OSqZs07rMQdlNHIFTDK8Qr5+ViKGe7Yfs0a0Uoi:OSR0zl5IFTDK9cViK4fs0l

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks