General

  • Target

    76265d29d05ba340c55224ab858bc5d0_NeikiAnalytics

  • Size

    1.2MB

  • Sample

    240509-sz9esahb7w

  • MD5

    76265d29d05ba340c55224ab858bc5d0

  • SHA1

    01f9f4d96f2757728738d872e5ff0d891d8ffeda

  • SHA256

    cc4e9f15e6f369d973fc3d2c5c744c41d8d1b631ad982d8ac0d9eb73e065443c

  • SHA512

    4d9c05c1ff33fafc2e8a1f81a864b142d4abbab9cf5b3e729707adcd589fcfef5a3f33aabb0e5fab14f5fda8d98e942bda7342251b7db1631513b2562638e62a

  • SSDEEP

    12288:IX8CFv/WHCXwpnsKvNA+XTvZHWuEo3oW2to:I9FXApsKv2EvZHp3oW2to

Malware Config

Targets

    • Target

      76265d29d05ba340c55224ab858bc5d0_NeikiAnalytics

    • Size

      1.2MB

    • MD5

      76265d29d05ba340c55224ab858bc5d0

    • SHA1

      01f9f4d96f2757728738d872e5ff0d891d8ffeda

    • SHA256

      cc4e9f15e6f369d973fc3d2c5c744c41d8d1b631ad982d8ac0d9eb73e065443c

    • SHA512

      4d9c05c1ff33fafc2e8a1f81a864b142d4abbab9cf5b3e729707adcd589fcfef5a3f33aabb0e5fab14f5fda8d98e942bda7342251b7db1631513b2562638e62a

    • SSDEEP

      12288:IX8CFv/WHCXwpnsKvNA+XTvZHWuEo3oW2to:I9FXApsKv2EvZHp3oW2to

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks