General

  • Target

    8841ebfc273859fddbba60fc52dce560_NeikiAnalytics

  • Size

    94KB

  • Sample

    240509-ttgcgsba4v

  • MD5

    8841ebfc273859fddbba60fc52dce560

  • SHA1

    0b67cebbc34c2bdcb99a1307dd5a58cff139da97

  • SHA256

    8cd42e01069bf9d025dd7c7ac3d1d65308c2d2ee99ea38450f5d57fe796be344

  • SHA512

    a801c878c417deff7018d96854ba50747a1349f27f77b39b56387e1451cf6befdbbf2a877e2d3a77f0ef2b2f4589f4f9e3d05e027b519bf7d3e25323bf43a646

  • SSDEEP

    1536:t4z7oxGJVoOm9pWUxPEQLcC/GOUJF4g6cBs+W/4RQD/YRfRa9HprmRfRZ:ezWG/oOspW8/Zg6d+VeD/Y5wkpv

Malware Config

Targets

    • Target

      8841ebfc273859fddbba60fc52dce560_NeikiAnalytics

    • Size

      94KB

    • MD5

      8841ebfc273859fddbba60fc52dce560

    • SHA1

      0b67cebbc34c2bdcb99a1307dd5a58cff139da97

    • SHA256

      8cd42e01069bf9d025dd7c7ac3d1d65308c2d2ee99ea38450f5d57fe796be344

    • SHA512

      a801c878c417deff7018d96854ba50747a1349f27f77b39b56387e1451cf6befdbbf2a877e2d3a77f0ef2b2f4589f4f9e3d05e027b519bf7d3e25323bf43a646

    • SSDEEP

      1536:t4z7oxGJVoOm9pWUxPEQLcC/GOUJF4g6cBs+W/4RQD/YRfRa9HprmRfRZ:ezWG/oOspW8/Zg6d+VeD/Y5wkpv

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks