General

  • Target

    88d99a73979a56d23934b1d8ff043b90_NeikiAnalytics

  • Size

    384KB

  • Sample

    240509-tt6x5sba7t

  • MD5

    88d99a73979a56d23934b1d8ff043b90

  • SHA1

    e458840bffda4f5cda623af646feb9d8b6a2fba7

  • SHA256

    52dbf6b9d311fbb8d19b8977c2640d84f3b036280e3b89ef7fab01bdb8b00dbb

  • SHA512

    10e583b913cd5565d0246121d35178c93653fe7aa937f156c3f7ed23e17dd36ec929b31d9762b0f7a11285776034903f001cd7b3b6d9284c2b8b173be86ab947

  • SSDEEP

    6144:4+vhggJ9lwtu1DjrFqh/QO+zrWnAdqjsqwHlGrh/6:3EtuFjAh//+zrWAIAqW5

Malware Config

Targets

    • Target

      88d99a73979a56d23934b1d8ff043b90_NeikiAnalytics

    • Size

      384KB

    • MD5

      88d99a73979a56d23934b1d8ff043b90

    • SHA1

      e458840bffda4f5cda623af646feb9d8b6a2fba7

    • SHA256

      52dbf6b9d311fbb8d19b8977c2640d84f3b036280e3b89ef7fab01bdb8b00dbb

    • SHA512

      10e583b913cd5565d0246121d35178c93653fe7aa937f156c3f7ed23e17dd36ec929b31d9762b0f7a11285776034903f001cd7b3b6d9284c2b8b173be86ab947

    • SSDEEP

      6144:4+vhggJ9lwtu1DjrFqh/QO+zrWnAdqjsqwHlGrh/6:3EtuFjAh//+zrWAIAqW5

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks