General

  • Target

    abb5a57e2fced8ff6635071685819d90_NeikiAnalytics

  • Size

    182KB

  • Sample

    240510-j4aycaff29

  • MD5

    abb5a57e2fced8ff6635071685819d90

  • SHA1

    e80c0d59e6030101ed648ba32bbca9c869c50591

  • SHA256

    4b848f0b11400b7364768a6b0a19d8aca60e6ecffb325dc3c70127e54d05e74a

  • SHA512

    33be7648ffa615804c9caf540b9afcaeeb5257a5252ab61332b7ba6ac9a6eb8921a42d5c4c3a5627a2d3f0f7c69cd9f285e50c9ba6a5e781e3eb2674b03c9f27

  • SSDEEP

    3072:idEUfKj8BYbDiC1ZTK7sxtLUIGST78jUVTyxhnMGnOkl5F:iUSiZTK40E8UVwpnOSF

Malware Config

Targets

    • Target

      abb5a57e2fced8ff6635071685819d90_NeikiAnalytics

    • Size

      182KB

    • MD5

      abb5a57e2fced8ff6635071685819d90

    • SHA1

      e80c0d59e6030101ed648ba32bbca9c869c50591

    • SHA256

      4b848f0b11400b7364768a6b0a19d8aca60e6ecffb325dc3c70127e54d05e74a

    • SHA512

      33be7648ffa615804c9caf540b9afcaeeb5257a5252ab61332b7ba6ac9a6eb8921a42d5c4c3a5627a2d3f0f7c69cd9f285e50c9ba6a5e781e3eb2674b03c9f27

    • SSDEEP

      3072:idEUfKj8BYbDiC1ZTK7sxtLUIGST78jUVTyxhnMGnOkl5F:iUSiZTK40E8UVwpnOSF

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks