General

  • Target

    79b7dd0838a5a8fddf6cde8750f06bc0_NeikiAnalytics

  • Size

    1.2MB

  • Sample

    240509-s7pekscf76

  • MD5

    79b7dd0838a5a8fddf6cde8750f06bc0

  • SHA1

    cbf4b8a52bb44fc677191cae27540091b412ce34

  • SHA256

    f85c6ad7ca079654a3972d3822bebc51f9f005f8ed1af5f050945e4c561aff2e

  • SHA512

    a1c03714654302e690ac176124716659c81ff17b5a67d57461c249d57e7fa8107748db759a1312ec8117be8ae670064ab789e18d0969fc6bf9d6e00ad9ad7eb6

  • SSDEEP

    6144:kWW0r88e/Icl4yjThipmMH/gysNkvC8vA+XTv7FYUwMOFusQ+kJ3StWDKcGVol:kWZroFv4pnsKvNA+XTvZHWuEo3oW2to

Malware Config

Targets

    • Target

      79b7dd0838a5a8fddf6cde8750f06bc0_NeikiAnalytics

    • Size

      1.2MB

    • MD5

      79b7dd0838a5a8fddf6cde8750f06bc0

    • SHA1

      cbf4b8a52bb44fc677191cae27540091b412ce34

    • SHA256

      f85c6ad7ca079654a3972d3822bebc51f9f005f8ed1af5f050945e4c561aff2e

    • SHA512

      a1c03714654302e690ac176124716659c81ff17b5a67d57461c249d57e7fa8107748db759a1312ec8117be8ae670064ab789e18d0969fc6bf9d6e00ad9ad7eb6

    • SSDEEP

      6144:kWW0r88e/Icl4yjThipmMH/gysNkvC8vA+XTv7FYUwMOFusQ+kJ3StWDKcGVol:kWZroFv4pnsKvNA+XTvZHWuEo3oW2to

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks