General

  • Target

    3df47ae8c8a561c1de35d42d4bd7258a153e3025cb95c94b7bc8cf924d627efd_NeikiAnalytics

  • Size

    1024KB

  • Sample

    240521-ncppmsbe71

  • MD5

    418c58e231cfa162588fe4627d50ba70

  • SHA1

    506f301a5d40e1e01a1a29b244e959e6236f543f

  • SHA256

    3df47ae8c8a561c1de35d42d4bd7258a153e3025cb95c94b7bc8cf924d627efd

  • SHA512

    d52ca40d86a0e4c1ec688f834d125be8e920ff87a27ebc887adb1467562c38e99239b3af421dc9c52f373ac00d4274b45453854d02e6d783a0d63e6b55fa5d43

  • SSDEEP

    24576:nphgk+rObtaSHFaZRBEYyqmaf2qwiHPKgRC4gvGZl6snARe:MQaSHFaZRBEYyqmS2DiHPKQgmN

Malware Config

Targets

    • Target

      3df47ae8c8a561c1de35d42d4bd7258a153e3025cb95c94b7bc8cf924d627efd_NeikiAnalytics

    • Size

      1024KB

    • MD5

      418c58e231cfa162588fe4627d50ba70

    • SHA1

      506f301a5d40e1e01a1a29b244e959e6236f543f

    • SHA256

      3df47ae8c8a561c1de35d42d4bd7258a153e3025cb95c94b7bc8cf924d627efd

    • SHA512

      d52ca40d86a0e4c1ec688f834d125be8e920ff87a27ebc887adb1467562c38e99239b3af421dc9c52f373ac00d4274b45453854d02e6d783a0d63e6b55fa5d43

    • SSDEEP

      24576:nphgk+rObtaSHFaZRBEYyqmaf2qwiHPKgRC4gvGZl6snARe:MQaSHFaZRBEYyqmS2DiHPKQgmN

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks