General

  • Target

    4ab41da66709e408ada3c34f78dec560_NeikiAnalytics

  • Size

    121KB

  • Sample

    240509-qyfpzafc29

  • MD5

    4ab41da66709e408ada3c34f78dec560

  • SHA1

    05c846b688c713156a70b67e23da7cfce66f5cde

  • SHA256

    f8414968dc1f6746ad92c379f00412ea0c77e8d6717a10378b092ad7a98397b8

  • SHA512

    b9819ae2a34d385d242d0638422088239aec228f46234ad006a44878f940832fb47a127c3201d2c02dc53f3ced3f4c8337e4a4f54e122f53e1fe3de16744720a

  • SSDEEP

    1536:AYtQUdWjIL82cbddxetKHtMleAIBNmwvhDCV19zQYOd5ijJnD5ir3oGuiWDD:A2xLL6CllIBNmMiO7AJnD5tvv

Malware Config

Targets

    • Target

      4ab41da66709e408ada3c34f78dec560_NeikiAnalytics

    • Size

      121KB

    • MD5

      4ab41da66709e408ada3c34f78dec560

    • SHA1

      05c846b688c713156a70b67e23da7cfce66f5cde

    • SHA256

      f8414968dc1f6746ad92c379f00412ea0c77e8d6717a10378b092ad7a98397b8

    • SHA512

      b9819ae2a34d385d242d0638422088239aec228f46234ad006a44878f940832fb47a127c3201d2c02dc53f3ced3f4c8337e4a4f54e122f53e1fe3de16744720a

    • SSDEEP

      1536:AYtQUdWjIL82cbddxetKHtMleAIBNmwvhDCV19zQYOd5ijJnD5ir3oGuiWDD:A2xLL6CllIBNmMiO7AJnD5tvv

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks