General

  • Target

    77bbd692f6f132793be333a92ea70db0_NeikiAnalytics

  • Size

    109KB

  • Sample

    240509-s38yescd47

  • MD5

    77bbd692f6f132793be333a92ea70db0

  • SHA1

    9e1a64cc8bf7a7e5eb351a4a15765fecdc7886bf

  • SHA256

    0c836c67166a83d3d98766d5df914731d77c0be4ee37ec7be01c076d8c6921b1

  • SHA512

    08e140ac0b73e84c39a6b8dfb31c74ae9a7d73dc008d89da39810561c30e6c45f3e5491ffcaedd29379ea091addb4460d60f9ce20bf266d66886a0df939d16c9

  • SSDEEP

    3072:IrzLbb/5AmXngUfBJ9DLCqwzBu1DjHLMVDqqkSpR:4btAAfBJ9Pwtu1DjrFqhz

Malware Config

Targets

    • Target

      77bbd692f6f132793be333a92ea70db0_NeikiAnalytics

    • Size

      109KB

    • MD5

      77bbd692f6f132793be333a92ea70db0

    • SHA1

      9e1a64cc8bf7a7e5eb351a4a15765fecdc7886bf

    • SHA256

      0c836c67166a83d3d98766d5df914731d77c0be4ee37ec7be01c076d8c6921b1

    • SHA512

      08e140ac0b73e84c39a6b8dfb31c74ae9a7d73dc008d89da39810561c30e6c45f3e5491ffcaedd29379ea091addb4460d60f9ce20bf266d66886a0df939d16c9

    • SSDEEP

      3072:IrzLbb/5AmXngUfBJ9DLCqwzBu1DjHLMVDqqkSpR:4btAAfBJ9Pwtu1DjrFqhz

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks