General

  • Target

    3d339cf054f80bc8c380e932e1b2de6b5ca21f08eba77259e34d8cf00522ab02_NeikiAnalytics

  • Size

    833KB

  • Sample

    240521-nacmasbd67

  • MD5

    0698c6bd2dc6a5e7a40ee6ad643dbe70

  • SHA1

    ab80074405c1742c0ea8c179f1d9741cfde6bae0

  • SHA256

    3d339cf054f80bc8c380e932e1b2de6b5ca21f08eba77259e34d8cf00522ab02

  • SHA512

    af6e7cd68a0db55853ce34392d95318675a8e6eb10c600cb8490cb9e3a4b2c20f5258a558e4d37bd4a2ad39958d08c77d5e63006a4d57250f3214d78c8b43127

  • SSDEEP

    24576:qxDdXHfNT2jU13fS2hEYM9RIPqcNaAarJWw6j0dFZg0ZktGlIOfSJbuIs8OkZ:qpdXMC3a2hEY2RIPqcNaAarJWwq0dFZe

Malware Config

Targets

    • Target

      3d339cf054f80bc8c380e932e1b2de6b5ca21f08eba77259e34d8cf00522ab02_NeikiAnalytics

    • Size

      833KB

    • MD5

      0698c6bd2dc6a5e7a40ee6ad643dbe70

    • SHA1

      ab80074405c1742c0ea8c179f1d9741cfde6bae0

    • SHA256

      3d339cf054f80bc8c380e932e1b2de6b5ca21f08eba77259e34d8cf00522ab02

    • SHA512

      af6e7cd68a0db55853ce34392d95318675a8e6eb10c600cb8490cb9e3a4b2c20f5258a558e4d37bd4a2ad39958d08c77d5e63006a4d57250f3214d78c8b43127

    • SSDEEP

      24576:qxDdXHfNT2jU13fS2hEYM9RIPqcNaAarJWw6j0dFZg0ZktGlIOfSJbuIs8OkZ:qpdXMC3a2hEY2RIPqcNaAarJWwq0dFZe

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks