Overview

overview

10

Static

static

10

0ce383c87c...cs.exe

windows7-x64

10

0ce383c87c...cs.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    0ce383c87c80515ae25b35b818f82cf0_NeikiAnalytics

  • Size

    302KB

  • Sample

    240511-rkkx7sea82

  • MD5

    0ce383c87c80515ae25b35b818f82cf0

  • SHA1

    e3f0acb496f10a0f5493fff331115ae0a0e17641

  • SHA256

    18dd4d57ed69ae46f36219762bb4435da00e6940bfb5683cf4cadad246c712bb

  • SHA512

    f546dd3207f3b9c32c017754e87e9839375a9d9c0a2949b9b6436f26877b0369b33c35dfa2b1492515b6b7275326380f7d0bd9cd3fa73d7020c694b2b9c997b5

  • SSDEEP

    6144:G1Hd52PCmyps1ZL7GNlighD4lTjZXvEQo9dfEORRAgnIlY1:G1Hd58Cmys3v8lXhuT9XvEhdfEmwlY1

Score
10/10
berbewbackdoordropperpersistencetrojan

Malware Config

Targets

    • Target

      0ce383c87c80515ae25b35b818f82cf0_NeikiAnalytics

    • Size

      302KB

    • MD5

      0ce383c87c80515ae25b35b818f82cf0

    • SHA1

      e3f0acb496f10a0f5493fff331115ae0a0e17641

    • SHA256

      18dd4d57ed69ae46f36219762bb4435da00e6940bfb5683cf4cadad246c712bb

    • SHA512

      f546dd3207f3b9c32c017754e87e9839375a9d9c0a2949b9b6436f26877b0369b33c35dfa2b1492515b6b7275326380f7d0bd9cd3fa73d7020c694b2b9c997b5

    • SSDEEP

      6144:G1Hd52PCmyps1ZL7GNlighD4lTjZXvEQo9dfEORRAgnIlY1:G1Hd58Cmys3v8lXhuT9XvEhdfEmwlY1

    Score
    10/10
    backdoordropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

      backdoortrojandropper

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks