General

  • Target

    6e94936fd22cedbd848e72b395dca150_NeikiAnalytics

  • Size

    374KB

  • Sample

    240509-sl1wgsgc5t

  • MD5

    6e94936fd22cedbd848e72b395dca150

  • SHA1

    30b726a7161fc4fdfab61f4c387bafb815360591

  • SHA256

    176a928a8d362c374b37f862e385b1367e63abc9495294dc8bc15d5c0e949c9d

  • SHA512

    a4d90762469a72b2b334c28c8da4714c3567ab3643e0e1f530119cb22519e1d8b690dc600e24328d654982d007ed3dafa959722958a6f8247f4e42902677dd77

  • SSDEEP

    6144:wU6uhN3Xr+Eu6QnFw5+0pU8oStTf3runG/qoxfIkeI1SHkF63lngMBdkw8ZF+Y:wMhBE6uidyzwr6AxfLeI1Su63lgMBdID

Malware Config

Targets

    • Target

      6e94936fd22cedbd848e72b395dca150_NeikiAnalytics

    • Size

      374KB

    • MD5

      6e94936fd22cedbd848e72b395dca150

    • SHA1

      30b726a7161fc4fdfab61f4c387bafb815360591

    • SHA256

      176a928a8d362c374b37f862e385b1367e63abc9495294dc8bc15d5c0e949c9d

    • SHA512

      a4d90762469a72b2b334c28c8da4714c3567ab3643e0e1f530119cb22519e1d8b690dc600e24328d654982d007ed3dafa959722958a6f8247f4e42902677dd77

    • SSDEEP

      6144:wU6uhN3Xr+Eu6QnFw5+0pU8oStTf3runG/qoxfIkeI1SHkF63lngMBdkw8ZF+Y:wMhBE6uidyzwr6AxfLeI1Su63lgMBdID

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks