General

  • Target

    70d30c8b35b8e94cc704de7ea73b8ba0_NeikiAnalytics

  • Size

    1000KB

  • Sample

    240509-sq683abe78

  • MD5

    70d30c8b35b8e94cc704de7ea73b8ba0

  • SHA1

    a76ed0e1dd2bab0f822d7771a94cbef27eab1837

  • SHA256

    896175747e190cda2088a195ef19196cafbb9b136ce448bf2d7901df684cd5b3

  • SHA512

    f6dd29dee3046863aa535364080d1b07022c4e9993cc161c6fc83db6a3c00dddfe1fb992db5f00436ae723c5eb43b832ee7ffba1fe663fbd7e0fd4703c525d17

  • SSDEEP

    12288:LbeDWgHbZtHBFLPj3TmLnWrOxNuxC97hFq9o7:XeDWgHbZtHBFLPj368MoC9Dq9o7

Malware Config

Targets

    • Target

      70d30c8b35b8e94cc704de7ea73b8ba0_NeikiAnalytics

    • Size

      1000KB

    • MD5

      70d30c8b35b8e94cc704de7ea73b8ba0

    • SHA1

      a76ed0e1dd2bab0f822d7771a94cbef27eab1837

    • SHA256

      896175747e190cda2088a195ef19196cafbb9b136ce448bf2d7901df684cd5b3

    • SHA512

      f6dd29dee3046863aa535364080d1b07022c4e9993cc161c6fc83db6a3c00dddfe1fb992db5f00436ae723c5eb43b832ee7ffba1fe663fbd7e0fd4703c525d17

    • SSDEEP

      12288:LbeDWgHbZtHBFLPj3TmLnWrOxNuxC97hFq9o7:XeDWgHbZtHBFLPj368MoC9Dq9o7

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks