General

  • Target

    43cdacaaff60080edad91cb6163b4e4cb44cc17b0f10eb8d2058cb5d06085209_NeikiAnalytics

  • Size

    89KB

  • Sample

    240521-nzhjvacf53

  • MD5

    ccd4172383d094ace743497bdd5b0a00

  • SHA1

    916d8722b6f8e150ae01ece29606b7aa0809b5f1

  • SHA256

    43cdacaaff60080edad91cb6163b4e4cb44cc17b0f10eb8d2058cb5d06085209

  • SHA512

    75ea3d44044e35251c498d5faae6249ca80fc82331cd333f0ef1f596e1b81c2c049db387b9382ab5b904229493697da36b905d3a415ab7dd2c3399f085a0f5be

  • SSDEEP

    1536:gy5HoJcCSqd60Ml0r6LaGWtSAfnjy9WB/iWWNfsaS3tRQv9D68a+VMKKTRVGFtU8:pHoJTd6Sr62G/UjyERkfsaSe8r4MKy32

Malware Config

Targets

    • Target

      43cdacaaff60080edad91cb6163b4e4cb44cc17b0f10eb8d2058cb5d06085209_NeikiAnalytics

    • Size

      89KB

    • MD5

      ccd4172383d094ace743497bdd5b0a00

    • SHA1

      916d8722b6f8e150ae01ece29606b7aa0809b5f1

    • SHA256

      43cdacaaff60080edad91cb6163b4e4cb44cc17b0f10eb8d2058cb5d06085209

    • SHA512

      75ea3d44044e35251c498d5faae6249ca80fc82331cd333f0ef1f596e1b81c2c049db387b9382ab5b904229493697da36b905d3a415ab7dd2c3399f085a0f5be

    • SSDEEP

      1536:gy5HoJcCSqd60Ml0r6LaGWtSAfnjy9WB/iWWNfsaS3tRQv9D68a+VMKKTRVGFtU8:pHoJTd6Sr62G/UjyERkfsaSe8r4MKy32

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks