General

  • Target

    453d77973506d4b2eee18c138aac8db96da83f89c9c0cc45dcec5151c57fe9cf_NeikiAnalytics

  • Size

    229KB

  • Sample

    240521-n46ggacg91

  • MD5

    d76c5aaf1c6fa1ce864a9d6c3c2fc700

  • SHA1

    e06417291cbe31e58115d3c267a7d55af4e00f28

  • SHA256

    453d77973506d4b2eee18c138aac8db96da83f89c9c0cc45dcec5151c57fe9cf

  • SHA512

    f9c55fecfcc81791a01e5de544b588e353b4a559c56168e9631315b27d9a1e7cc9454e5e9e95af70bfa2844a1ae3baf253b37051cb3bf9345563e770449f4809

  • SSDEEP

    6144:qNh2KSEx271+HZ/pvkym/89bYEwPhCKvav:qN9S/7AIfFfvav

Malware Config

Targets

    • Target

      453d77973506d4b2eee18c138aac8db96da83f89c9c0cc45dcec5151c57fe9cf_NeikiAnalytics

    • Size

      229KB

    • MD5

      d76c5aaf1c6fa1ce864a9d6c3c2fc700

    • SHA1

      e06417291cbe31e58115d3c267a7d55af4e00f28

    • SHA256

      453d77973506d4b2eee18c138aac8db96da83f89c9c0cc45dcec5151c57fe9cf

    • SHA512

      f9c55fecfcc81791a01e5de544b588e353b4a559c56168e9631315b27d9a1e7cc9454e5e9e95af70bfa2844a1ae3baf253b37051cb3bf9345563e770449f4809

    • SSDEEP

      6144:qNh2KSEx271+HZ/pvkym/89bYEwPhCKvav:qN9S/7AIfFfvav

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks