General

  • Target

    4b719da682aea5a4b05abd000a944e80_NeikiAnalytics

  • Size

    367KB

  • Sample

    240509-qzqxbscd5y

  • MD5

    4b719da682aea5a4b05abd000a944e80

  • SHA1

    c2b65307036dfdf3d5a1bca94d69c6d8f146b2c8

  • SHA256

    ac49bd7821122dec59fe0cfb0874634d7fba4ae394d899b52c67d00c66a2e80c

  • SHA512

    467c130e7a16d26c06dc68dcc3833f9fba3f933da531eb716e91112a1e43400935bed0fc594ae4cdfb4c0726d82a588591d035ce85b334a06fe35f0d5684a7db

  • SSDEEP

    6144:IeEotGIWg3WeIRtnJfKXqPTX7D7FM6234lKm3mo8Yvi4KsLTFM6234lKm3cM9:IwtGIWg+tJCXqP77D7FB24lwR45FB24h

Malware Config

Targets

    • Target

      4b719da682aea5a4b05abd000a944e80_NeikiAnalytics

    • Size

      367KB

    • MD5

      4b719da682aea5a4b05abd000a944e80

    • SHA1

      c2b65307036dfdf3d5a1bca94d69c6d8f146b2c8

    • SHA256

      ac49bd7821122dec59fe0cfb0874634d7fba4ae394d899b52c67d00c66a2e80c

    • SHA512

      467c130e7a16d26c06dc68dcc3833f9fba3f933da531eb716e91112a1e43400935bed0fc594ae4cdfb4c0726d82a588591d035ce85b334a06fe35f0d5684a7db

    • SSDEEP

      6144:IeEotGIWg3WeIRtnJfKXqPTX7D7FM6234lKm3mo8Yvi4KsLTFM6234lKm3cM9:IwtGIWg+tJCXqP77D7FB24lwR45FB24h

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks