General

  • Target

    6f43342bcc998577902f31fd985e0a10_NeikiAnalytics

  • Size

    570KB

  • Sample

    240509-sm717agd2z

  • MD5

    6f43342bcc998577902f31fd985e0a10

  • SHA1

    ddd42d3300303e7a8a37443f02edc3f03af82705

  • SHA256

    7cc85c115bd483a70d2e5d203a7738289e31c17fd8c2a5057755c9b9909b88e1

  • SHA512

    321aeea35faddfb75d8acdc74c8bad8aa6d7310526aa29e4c5c77119bbb07e85de1d8dacde7e77ca3e10aff38d4f15ccceb286308a6c11738324556c2f33ee60

  • SSDEEP

    12288:L0SN3Ph2kkkkK4kXkkkkkkkkl888888888888888888nusMH0QiRLsRf:LjN3Ph2kkkkK4kXkkkkkkkkhLg

Malware Config

Targets

    • Target

      6f43342bcc998577902f31fd985e0a10_NeikiAnalytics

    • Size

      570KB

    • MD5

      6f43342bcc998577902f31fd985e0a10

    • SHA1

      ddd42d3300303e7a8a37443f02edc3f03af82705

    • SHA256

      7cc85c115bd483a70d2e5d203a7738289e31c17fd8c2a5057755c9b9909b88e1

    • SHA512

      321aeea35faddfb75d8acdc74c8bad8aa6d7310526aa29e4c5c77119bbb07e85de1d8dacde7e77ca3e10aff38d4f15ccceb286308a6c11738324556c2f33ee60

    • SSDEEP

      12288:L0SN3Ph2kkkkK4kXkkkkkkkkl888888888888888888nusMH0QiRLsRf:LjN3Ph2kkkkK4kXkkkkkkkkhLg

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks