General

  • Target

    3e2d2984d1a95f4159d0980ebb38fd6f40912e68d91b0deed58a95e29ca6662b_NeikiAnalytics

  • Size

    305KB

  • Sample

    240521-ndtpzsbf22

  • MD5

    0299ec1fdb40a5227f1e177406a379a0

  • SHA1

    02d618e80aa6423407fac3b97e79d07341a05bd7

  • SHA256

    3e2d2984d1a95f4159d0980ebb38fd6f40912e68d91b0deed58a95e29ca6662b

  • SHA512

    e82c283d5525f4014ab186cc8eadbd55264faf0fec4df554be946dda4227f37f4e27af33c06f7651899079a40c3173e029c203680bfe3c7cd35cd9f86306c401

  • SSDEEP

    6144:4TP1BWC0HOsNNxunXe8yhrtMsQBvli+RQFdq:CPmN3vAO8qRMsrOQF

Malware Config

Targets

    • Target

      3e2d2984d1a95f4159d0980ebb38fd6f40912e68d91b0deed58a95e29ca6662b_NeikiAnalytics

    • Size

      305KB

    • MD5

      0299ec1fdb40a5227f1e177406a379a0

    • SHA1

      02d618e80aa6423407fac3b97e79d07341a05bd7

    • SHA256

      3e2d2984d1a95f4159d0980ebb38fd6f40912e68d91b0deed58a95e29ca6662b

    • SHA512

      e82c283d5525f4014ab186cc8eadbd55264faf0fec4df554be946dda4227f37f4e27af33c06f7651899079a40c3173e029c203680bfe3c7cd35cd9f86306c401

    • SSDEEP

      6144:4TP1BWC0HOsNNxunXe8yhrtMsQBvli+RQFdq:CPmN3vAO8qRMsrOQF

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks