General

  • Target

    899cfbf90a5b833e7948870c5bb36da0_NeikiAnalytics

  • Size

    414KB

  • Sample

    240509-tvz6zseb95

  • MD5

    899cfbf90a5b833e7948870c5bb36da0

  • SHA1

    85f2e07715a17a936c573570b93e720935d71f26

  • SHA256

    25846291ea3fb59e1abd826558660e795a2f899eb2c657cb228f36a6d28de05a

  • SHA512

    e5dea2b6a1cf976eb233e713b8d5e3a222dcdeb1deaba982a5e911b133aabf0473113cfed9fd4d0dfd0148f5765041b3e1d8b9aa91a8febeb257d2d1a0cf2387

  • SSDEEP

    12288:ppzvQDedOGeKTaPkY660fIaDZkY660ffL:UDedOGeKTaPgsaDZgTL

Malware Config

Targets

    • Target

      899cfbf90a5b833e7948870c5bb36da0_NeikiAnalytics

    • Size

      414KB

    • MD5

      899cfbf90a5b833e7948870c5bb36da0

    • SHA1

      85f2e07715a17a936c573570b93e720935d71f26

    • SHA256

      25846291ea3fb59e1abd826558660e795a2f899eb2c657cb228f36a6d28de05a

    • SHA512

      e5dea2b6a1cf976eb233e713b8d5e3a222dcdeb1deaba982a5e911b133aabf0473113cfed9fd4d0dfd0148f5765041b3e1d8b9aa91a8febeb257d2d1a0cf2387

    • SSDEEP

      12288:ppzvQDedOGeKTaPkY660fIaDZkY660ffL:UDedOGeKTaPgsaDZgTL

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks