General

  • Target

    4e2fefec509ad30f35c7d1790223ed261e4cefba94efb600933486d64f9a8ed9_NeikiAnalytics

  • Size

    1.1MB

  • Sample

    240521-p1pvzsed7w

  • MD5

    ccf0d082b6447ea0731fde59a97b3fb0

  • SHA1

    1ae4589d6381a3d4192d6616dacbc7538273f8b6

  • SHA256

    4e2fefec509ad30f35c7d1790223ed261e4cefba94efb600933486d64f9a8ed9

  • SHA512

    0912680ffd8bdd22b6a20392a1f83c487a2946bc262786c28fe9ada0d9804d84accaba4559acb31689a567d97f1a3e96dc9e6f15c36ed59d6a0d2237002219cf

  • SSDEEP

    24576:FGLGrQg5Wm0BmmvFimm0MTP7hm0BmmvFimm0HkEyDucEQX:F3Qg5SiLi0kEyDucEQX

Malware Config

Targets

    • Target

      4e2fefec509ad30f35c7d1790223ed261e4cefba94efb600933486d64f9a8ed9_NeikiAnalytics

    • Size

      1.1MB

    • MD5

      ccf0d082b6447ea0731fde59a97b3fb0

    • SHA1

      1ae4589d6381a3d4192d6616dacbc7538273f8b6

    • SHA256

      4e2fefec509ad30f35c7d1790223ed261e4cefba94efb600933486d64f9a8ed9

    • SHA512

      0912680ffd8bdd22b6a20392a1f83c487a2946bc262786c28fe9ada0d9804d84accaba4559acb31689a567d97f1a3e96dc9e6f15c36ed59d6a0d2237002219cf

    • SSDEEP

      24576:FGLGrQg5Wm0BmmvFimm0MTP7hm0BmmvFimm0HkEyDucEQX:F3Qg5SiLi0kEyDucEQX

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks