General

  • Target

    841f545fa1c59fba7b4752dbf3e17700_NeikiAnalytics

  • Size

    109KB

  • Sample

    240509-tm77maaf5v

  • MD5

    841f545fa1c59fba7b4752dbf3e17700

  • SHA1

    eb632e661f4b27903fa6f6925557b592a772c1de

  • SHA256

    efb220bbe42c1e770b70f2f7e13aaffefbd4ae410e1768b561838621a0b8a263

  • SHA512

    68d78aae5f80da201c4c1f0bbc96fa7fa2796c31e36cccc5b50ee97ec61fef67071445e276641b6343358e359cbf3d53619fb9b4368b33c682f4ddb42f283c93

  • SSDEEP

    3072:8LqabWRVCciY8Dmm+3YoOWJ9BLCqwzBu1DjHLMVDqqkSpR:8LACcfmyYoOWJ9Jwtu1DjrFqhz

Malware Config

Targets

    • Target

      841f545fa1c59fba7b4752dbf3e17700_NeikiAnalytics

    • Size

      109KB

    • MD5

      841f545fa1c59fba7b4752dbf3e17700

    • SHA1

      eb632e661f4b27903fa6f6925557b592a772c1de

    • SHA256

      efb220bbe42c1e770b70f2f7e13aaffefbd4ae410e1768b561838621a0b8a263

    • SHA512

      68d78aae5f80da201c4c1f0bbc96fa7fa2796c31e36cccc5b50ee97ec61fef67071445e276641b6343358e359cbf3d53619fb9b4368b33c682f4ddb42f283c93

    • SSDEEP

      3072:8LqabWRVCciY8Dmm+3YoOWJ9BLCqwzBu1DjHLMVDqqkSpR:8LACcfmyYoOWJ9Jwtu1DjrFqhz

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks