General

  • Target

    6a4e037b0e32d15e8370c734de6051f0_NeikiAnalytics

  • Size

    109KB

  • Sample

    240509-sesljafg7w

  • MD5

    6a4e037b0e32d15e8370c734de6051f0

  • SHA1

    7639cb4593a7ac5c17459ef950ea414f14326d92

  • SHA256

    0eae9f873f16ea749fbbd453a10537a0cba9cc5b62da15de58f102f255dba645

  • SHA512

    957b222dc6837751bce339a5e0ce7808ad481f7ae65448b0d2f40a387fa54499a69a2e1137f0cb233ee3ae2e2c7858544e2c5202d6ecf8bf1e292e8e5f750a17

  • SSDEEP

    3072:BIyYfRWc6znhKk9mmJ9MLCqwzBu1DjHLMVDqqkSpR:ayewnh/EmJ90wtu1DjrFqhz

Malware Config

Targets

    • Target

      6a4e037b0e32d15e8370c734de6051f0_NeikiAnalytics

    • Size

      109KB

    • MD5

      6a4e037b0e32d15e8370c734de6051f0

    • SHA1

      7639cb4593a7ac5c17459ef950ea414f14326d92

    • SHA256

      0eae9f873f16ea749fbbd453a10537a0cba9cc5b62da15de58f102f255dba645

    • SHA512

      957b222dc6837751bce339a5e0ce7808ad481f7ae65448b0d2f40a387fa54499a69a2e1137f0cb233ee3ae2e2c7858544e2c5202d6ecf8bf1e292e8e5f750a17

    • SSDEEP

      3072:BIyYfRWc6znhKk9mmJ9MLCqwzBu1DjHLMVDqqkSpR:ayewnh/EmJ90wtu1DjrFqhz

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks