General

  • Target

    81c67ac4f7b181c7445e7b1d447fbb60_NeikiAnalytics

  • Size

    125KB

  • Sample

    240509-tjq4yaad6x

  • MD5

    81c67ac4f7b181c7445e7b1d447fbb60

  • SHA1

    8fd726a61b4766ebebf2075f37cbd91acbc6f871

  • SHA256

    bac4103e72555cba0145cbe3daa5f90fea0f9f24d5ab08494da58c288db49992

  • SHA512

    ea0a58879bcffb5b4f9d84432768c7f06ab7d1bc51b15847b5b68c42e5a89e6c0264c2f17cddf33159fbbd7f0944a5b466190b4c198094ca8fe77ba18864e36f

  • SSDEEP

    3072:Rl49WI432VhknZAgxcC1WdTCn93OGey/ZhJakrPF:Q9j43WhIAkcxTCndOGeKTaG

Malware Config

Targets

    • Target

      81c67ac4f7b181c7445e7b1d447fbb60_NeikiAnalytics

    • Size

      125KB

    • MD5

      81c67ac4f7b181c7445e7b1d447fbb60

    • SHA1

      8fd726a61b4766ebebf2075f37cbd91acbc6f871

    • SHA256

      bac4103e72555cba0145cbe3daa5f90fea0f9f24d5ab08494da58c288db49992

    • SHA512

      ea0a58879bcffb5b4f9d84432768c7f06ab7d1bc51b15847b5b68c42e5a89e6c0264c2f17cddf33159fbbd7f0944a5b466190b4c198094ca8fe77ba18864e36f

    • SSDEEP

      3072:Rl49WI432VhknZAgxcC1WdTCn93OGey/ZhJakrPF:Q9j43WhIAkcxTCndOGeKTaG

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks