General

  • Target

    6d8ae8c26ec5e7c29bccea52aabb55e0_NeikiAnalytics

  • Size

    362KB

  • Sample

    240509-skm81abb72

  • MD5

    6d8ae8c26ec5e7c29bccea52aabb55e0

  • SHA1

    bf296c9c5a31384b179eb66a0fa5d080f2516cfc

  • SHA256

    4ce84df7e9ee32719e1841e43ed484cb7d47d94e178ef1b7299adbd6a8af638b

  • SHA512

    9c9522f15eb394502dc75f73f7366e6d4967365f370b581d66086cfde99c8b5dfe73e9bd77c07893ca974d3376116e462e83733b3cb037726d20153351707abd

  • SSDEEP

    6144:BUTza3VtGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxriEl/:BUTzStmuMtrQ07nGWxWSsmiMyh95r5Oa

Malware Config

Targets

    • Target

      6d8ae8c26ec5e7c29bccea52aabb55e0_NeikiAnalytics

    • Size

      362KB

    • MD5

      6d8ae8c26ec5e7c29bccea52aabb55e0

    • SHA1

      bf296c9c5a31384b179eb66a0fa5d080f2516cfc

    • SHA256

      4ce84df7e9ee32719e1841e43ed484cb7d47d94e178ef1b7299adbd6a8af638b

    • SHA512

      9c9522f15eb394502dc75f73f7366e6d4967365f370b581d66086cfde99c8b5dfe73e9bd77c07893ca974d3376116e462e83733b3cb037726d20153351707abd

    • SSDEEP

      6144:BUTza3VtGDuMEUrQVad7nG3mbDp2o+SsmiMyhtHEyr5psPc1aj8DOvlvuZxriEl/:BUTzStmuMtrQ07nGWxWSsmiMyh95r5Oa

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks