General

  • Target

    727d6ce5774e748ac72b8e9277d82400_NeikiAnalytics

  • Size

    448KB

  • Sample

    240509-str9babg37

  • MD5

    727d6ce5774e748ac72b8e9277d82400

  • SHA1

    58cb332c515ba6edb21272f07260479faf02a192

  • SHA256

    6bafe7405bb898d2c168cd585a70d469f9f18f7ef8530524551f58157d7d2b47

  • SHA512

    ced97a43f6ff7279a95e9d2d31b9645f623a50b8f9766ff665f749c928e64c9f01bce10fd66c74e31a7a41e406028c00672f3059c4a1029584d3f9d6a78f3569

  • SSDEEP

    6144:xMs8hW0LA1U7aOl3BzrUmKyIxLfYeOO9UmKyIxLiajOEjXP3HBsR4/0ePGSzxC:xN8hNEm7aOlxzr3cOK3TajRfXFMKNxC

Malware Config

Targets

    • Target

      727d6ce5774e748ac72b8e9277d82400_NeikiAnalytics

    • Size

      448KB

    • MD5

      727d6ce5774e748ac72b8e9277d82400

    • SHA1

      58cb332c515ba6edb21272f07260479faf02a192

    • SHA256

      6bafe7405bb898d2c168cd585a70d469f9f18f7ef8530524551f58157d7d2b47

    • SHA512

      ced97a43f6ff7279a95e9d2d31b9645f623a50b8f9766ff665f749c928e64c9f01bce10fd66c74e31a7a41e406028c00672f3059c4a1029584d3f9d6a78f3569

    • SSDEEP

      6144:xMs8hW0LA1U7aOl3BzrUmKyIxLfYeOO9UmKyIxLiajOEjXP3HBsR4/0ePGSzxC:xN8hNEm7aOlxzr3cOK3TajRfXFMKNxC

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks