General

  • Target

    3bc9af6b2a15d387bbb67276b94673d4fac42085bacc6ff36024b5684f3d6285_NeikiAnalytics

  • Size

    128KB

  • Sample

    240521-m4tbgabb6v

  • MD5

    4d62ed43975f05cc3e6c5f010dd5bf60

  • SHA1

    1a31093f7eaf1b11cf145ecc4c7f40c0cc4d7308

  • SHA256

    3bc9af6b2a15d387bbb67276b94673d4fac42085bacc6ff36024b5684f3d6285

  • SHA512

    a00e199c20ee686c2e59aff701980be1ad895aebfa2c546d47abc289227094a1d52ba97fbca00aff4eb028678885358f150a767156095b639eb4615f39e5dcd6

  • SSDEEP

    3072:w1p5kqzCTPZBozt2dRMZD+eDf5wkpHxG:Ow2MPczM6CCA

Malware Config

Targets

    • Target

      3bc9af6b2a15d387bbb67276b94673d4fac42085bacc6ff36024b5684f3d6285_NeikiAnalytics

    • Size

      128KB

    • MD5

      4d62ed43975f05cc3e6c5f010dd5bf60

    • SHA1

      1a31093f7eaf1b11cf145ecc4c7f40c0cc4d7308

    • SHA256

      3bc9af6b2a15d387bbb67276b94673d4fac42085bacc6ff36024b5684f3d6285

    • SHA512

      a00e199c20ee686c2e59aff701980be1ad895aebfa2c546d47abc289227094a1d52ba97fbca00aff4eb028678885358f150a767156095b639eb4615f39e5dcd6

    • SSDEEP

      3072:w1p5kqzCTPZBozt2dRMZD+eDf5wkpHxG:Ow2MPczM6CCA

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks