General

  • Target

    49535b908c0eac86907be70c05c85fae6efcbcac58cf361b76b7f0d386ea2c88_NeikiAnalytics

  • Size

    125KB

  • Sample

    240521-pjbl2ade39

  • MD5

    eddd8ba87ff411c7c851ae13ae08c9f0

  • SHA1

    dc4becbcfaf0a057dde2bc13b0f6d8bd342239bb

  • SHA256

    49535b908c0eac86907be70c05c85fae6efcbcac58cf361b76b7f0d386ea2c88

  • SHA512

    5ebf5ddcb2b6f4a6aac2e1b548395082b8259f70d20483c6ba06fa042fde75cc018d2cb4d430564bd516e018466d0937c921c9c8849b95b83025bf64183b9147

  • SSDEEP

    3072:JEl4A4IRK0/0ilE8NQErYmciE1WdTCn93OGey/ZhJakrPF:/I1gErZcETCndOGeKTaG

Malware Config

Targets

    • Target

      49535b908c0eac86907be70c05c85fae6efcbcac58cf361b76b7f0d386ea2c88_NeikiAnalytics

    • Size

      125KB

    • MD5

      eddd8ba87ff411c7c851ae13ae08c9f0

    • SHA1

      dc4becbcfaf0a057dde2bc13b0f6d8bd342239bb

    • SHA256

      49535b908c0eac86907be70c05c85fae6efcbcac58cf361b76b7f0d386ea2c88

    • SHA512

      5ebf5ddcb2b6f4a6aac2e1b548395082b8259f70d20483c6ba06fa042fde75cc018d2cb4d430564bd516e018466d0937c921c9c8849b95b83025bf64183b9147

    • SSDEEP

      3072:JEl4A4IRK0/0ilE8NQErYmciE1WdTCn93OGey/ZhJakrPF:/I1gErZcETCndOGeKTaG

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks