General

  • Target

    4dba2de506ac81e9848856a477b8001c960656afd0b348397f3cd5aca2cfb584_NeikiAnalytics

  • Size

    1.3MB

  • Sample

    240521-py79jsec23

  • MD5

    4ffc193d5495902b7dd2aa393e45bca0

  • SHA1

    68788814015ff60f2cd968b052d7e49aff49d10e

  • SHA256

    4dba2de506ac81e9848856a477b8001c960656afd0b348397f3cd5aca2cfb584

  • SHA512

    6412b2146df6169ec1c594376f69badccdbe378b707f24232e916c44452924b8cc79c2da170f828cd7275b79eadfee5a645e75df85d0d9c8bc92f67c875b900d

  • SSDEEP

    24576:3avr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:qkB9f0VP91v92W805IPSOdKgzEoxrlQ3

Malware Config

Targets

    • Target

      4dba2de506ac81e9848856a477b8001c960656afd0b348397f3cd5aca2cfb584_NeikiAnalytics

    • Size

      1.3MB

    • MD5

      4ffc193d5495902b7dd2aa393e45bca0

    • SHA1

      68788814015ff60f2cd968b052d7e49aff49d10e

    • SHA256

      4dba2de506ac81e9848856a477b8001c960656afd0b348397f3cd5aca2cfb584

    • SHA512

      6412b2146df6169ec1c594376f69badccdbe378b707f24232e916c44452924b8cc79c2da170f828cd7275b79eadfee5a645e75df85d0d9c8bc92f67c875b900d

    • SSDEEP

      24576:3avr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:qkB9f0VP91v92W805IPSOdKgzEoxrlQ3

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks