General

  • Target

    3e2c51dfa93375cdd0b9938792027ff038f1262879416e9a5c70e2650b32f81e_NeikiAnalytics

  • Size

    121KB

  • Sample

    240521-ndsgxsbf31

  • MD5

    e10e45ab368661f7e7c174d65b1a8330

  • SHA1

    4c9061d98efe9ed8c5551289302206e0125a9d86

  • SHA256

    3e2c51dfa93375cdd0b9938792027ff038f1262879416e9a5c70e2650b32f81e

  • SHA512

    5cc78d4952bf8614908bce7aaf98472b7a473eb57e3f273efb05a092761d4dcc3fe698bdb9b45cb56a45f5f047febb437cd8fbd1cafcddaa032125def0b490ea

  • SSDEEP

    3072:A4eXn3kUMjC1aTsNmvUMUEWmO7AJnD5tvv:Ad30UMjCksInUHmOarvv

Malware Config

Targets

    • Target

      3e2c51dfa93375cdd0b9938792027ff038f1262879416e9a5c70e2650b32f81e_NeikiAnalytics

    • Size

      121KB

    • MD5

      e10e45ab368661f7e7c174d65b1a8330

    • SHA1

      4c9061d98efe9ed8c5551289302206e0125a9d86

    • SHA256

      3e2c51dfa93375cdd0b9938792027ff038f1262879416e9a5c70e2650b32f81e

    • SHA512

      5cc78d4952bf8614908bce7aaf98472b7a473eb57e3f273efb05a092761d4dcc3fe698bdb9b45cb56a45f5f047febb437cd8fbd1cafcddaa032125def0b490ea

    • SSDEEP

      3072:A4eXn3kUMjC1aTsNmvUMUEWmO7AJnD5tvv:Ad30UMjCksInUHmOarvv

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks