General

  • Target

    4531adb9af296486a1279a4b5bd1c543588497e96278ba1d3b2b9c9879d07bba_NeikiAnalytics

  • Size

    384KB

  • Sample

    240521-n43qkscg9w

  • MD5

    5e40e5d687015863ffd28505da8dae70

  • SHA1

    9f7d49b4cd6bc09d24db71839df3e50a6bbfa762

  • SHA256

    4531adb9af296486a1279a4b5bd1c543588497e96278ba1d3b2b9c9879d07bba

  • SHA512

    d1ae066095b41fab5c569171f743593da4a90def1c5e178828f37d24ebeeb4409e241bc7025c701d395ce1f62c64f9c114a7ab14b74a02a6396a973567d6c8ef

  • SSDEEP

    6144:KpZNMCWCLP2ztiSvNUUySM+vrdd2kEjiPISUOgW9X+hOGzC/NM:itOvKyzekmZzcukG2/

Malware Config

Targets

    • Target

      4531adb9af296486a1279a4b5bd1c543588497e96278ba1d3b2b9c9879d07bba_NeikiAnalytics

    • Size

      384KB

    • MD5

      5e40e5d687015863ffd28505da8dae70

    • SHA1

      9f7d49b4cd6bc09d24db71839df3e50a6bbfa762

    • SHA256

      4531adb9af296486a1279a4b5bd1c543588497e96278ba1d3b2b9c9879d07bba

    • SHA512

      d1ae066095b41fab5c569171f743593da4a90def1c5e178828f37d24ebeeb4409e241bc7025c701d395ce1f62c64f9c114a7ab14b74a02a6396a973567d6c8ef

    • SSDEEP

      6144:KpZNMCWCLP2ztiSvNUUySM+vrdd2kEjiPISUOgW9X+hOGzC/NM:itOvKyzekmZzcukG2/

    Score
    10/10
    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks