General

  • Target

    e0b815d739002a37a6ecc20bc3650730_NeikiAnalytics

  • Size

    768KB

  • Sample

    240516-qs2egsfa6y

  • MD5

    e0b815d739002a37a6ecc20bc3650730

  • SHA1

    726cc2dfc685bf521316d385d4bbee0e507f1aca

  • SHA256

    b45e7436ae4ee7299390de7e43c191b0e0f743d8d0f5412a504121f6f1cea01d

  • SHA512

    9328b59fbc9c663bf961620d5d888a060d2649f23403db8a90279995af2f702ceb2a4d923cdc8b47bb1ac21bdaa052b14897117e031a44ec6cc5ba3dfd7fdc12

  • SSDEEP

    12288:KkJLvH6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvO:1q5h3q5htaSHFaZRBEYyqmaf2qwiHPKu

Malware Config

Targets

    • Target

      e0b815d739002a37a6ecc20bc3650730_NeikiAnalytics

    • Size

      768KB

    • MD5

      e0b815d739002a37a6ecc20bc3650730

    • SHA1

      726cc2dfc685bf521316d385d4bbee0e507f1aca

    • SHA256

      b45e7436ae4ee7299390de7e43c191b0e0f743d8d0f5412a504121f6f1cea01d

    • SHA512

      9328b59fbc9c663bf961620d5d888a060d2649f23403db8a90279995af2f702ceb2a4d923cdc8b47bb1ac21bdaa052b14897117e031a44ec6cc5ba3dfd7fdc12

    • SSDEEP

      12288:KkJLvH6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvO:1q5h3q5htaSHFaZRBEYyqmaf2qwiHPKu

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks