General

  • Target

    3fa41007a8a978d0ce2c589892a552d4663438a984a0cc6ba0efbfc3840f8a48_NeikiAnalytics

  • Size

    664KB

  • Sample

    240521-njpyzsbh26

  • MD5

    d73ff9e767ca4f0bd18aef56bb365010

  • SHA1

    c76bb090ac9097049854a6f092cec435b0103c29

  • SHA256

    3fa41007a8a978d0ce2c589892a552d4663438a984a0cc6ba0efbfc3840f8a48

  • SHA512

    5bc1c7196b1adf7d9bd6280a39a0314e254342f04cc7c0bb61a121cce429941a16ceefc18d9b5dcf982f3ed8e746f13c972b1436729327e2d1dc65c6390f9ed8

  • SSDEEP

    12288:SxpV6yYP4rbpV6yYPg058KpV6yYPNUir2MhNl6zX3w9As/xO23WM6tJmDYjmR54F:UW4XWleKWNUir2MhNl6zX3w9As/xO23U

Malware Config

Targets

    • Target

      3fa41007a8a978d0ce2c589892a552d4663438a984a0cc6ba0efbfc3840f8a48_NeikiAnalytics

    • Size

      664KB

    • MD5

      d73ff9e767ca4f0bd18aef56bb365010

    • SHA1

      c76bb090ac9097049854a6f092cec435b0103c29

    • SHA256

      3fa41007a8a978d0ce2c589892a552d4663438a984a0cc6ba0efbfc3840f8a48

    • SHA512

      5bc1c7196b1adf7d9bd6280a39a0314e254342f04cc7c0bb61a121cce429941a16ceefc18d9b5dcf982f3ed8e746f13c972b1436729327e2d1dc65c6390f9ed8

    • SSDEEP

      12288:SxpV6yYP4rbpV6yYPg058KpV6yYPNUir2MhNl6zX3w9As/xO23WM6tJmDYjmR54F:UW4XWleKWNUir2MhNl6zX3w9As/xO23U

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks