General

  • Target

    3dfbce8fd4d452a91e1a4f0db4100fd1b8bd030d53368d9fbcf3d08c7db91540_NeikiAnalytics

  • Size

    240KB

  • Sample

    240521-ncy83sbe74

  • MD5

    3eb51ad0b7b3151bc8a178f8bd7abb20

  • SHA1

    dc07b256f089e2f3544d3991f52d7a86dd65beb1

  • SHA256

    3dfbce8fd4d452a91e1a4f0db4100fd1b8bd030d53368d9fbcf3d08c7db91540

  • SHA512

    25eb40ea50a28306a0ba2daa72ea4cd511bc64a8a9ae5345b5397ba79de59ef0e6acd4da739b2b6301bad2deea9f984263f4558c5003ed94e9ae2600f0ca0127

  • SSDEEP

    6144:7InYowE9Rshkws+H3Lb+Qw/WYgFIgsh0KXoQr8jTQjewInB9:qbwn7LKQweY0sam38vZwIB9

Malware Config

Targets

    • Target

      3dfbce8fd4d452a91e1a4f0db4100fd1b8bd030d53368d9fbcf3d08c7db91540_NeikiAnalytics

    • Size

      240KB

    • MD5

      3eb51ad0b7b3151bc8a178f8bd7abb20

    • SHA1

      dc07b256f089e2f3544d3991f52d7a86dd65beb1

    • SHA256

      3dfbce8fd4d452a91e1a4f0db4100fd1b8bd030d53368d9fbcf3d08c7db91540

    • SHA512

      25eb40ea50a28306a0ba2daa72ea4cd511bc64a8a9ae5345b5397ba79de59ef0e6acd4da739b2b6301bad2deea9f984263f4558c5003ed94e9ae2600f0ca0127

    • SSDEEP

      6144:7InYowE9Rshkws+H3Lb+Qw/WYgFIgsh0KXoQr8jTQjewInB9:qbwn7LKQweY0sam38vZwIB9

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks