General

  • Target

    3f6ae3f6626e3c5814bcf053629e45c0_NeikiAnalytics.exe

  • Size

    656KB

  • Sample

    240522-z9gabahc6s

  • MD5

    3f6ae3f6626e3c5814bcf053629e45c0

  • SHA1

    472d5b99bbe9df619a278a9c68cf7b5a96e4da07

  • SHA256

    9a55bd3b50b7c42ca70f02863a552d4b31beed7cfe34a746960c969082816628

  • SHA512

    6143ee7867a87a1410ea5aa126a6f968b19fe84bc8ac58b304a990cf719f95b95905e9a11a9350c2df28d30b6bdbbc890a6d2a331716e3dbc8cc4f6f94ff07a9

  • SSDEEP

    12288:w+67XR9JSSxvYGdodHDusQHNd1KidKjttRYLwU:w+6N986Y7DusQHNd1KidKjttRYLwU

Malware Config

Targets

    • Target

      3f6ae3f6626e3c5814bcf053629e45c0_NeikiAnalytics.exe

    • Size

      656KB

    • MD5

      3f6ae3f6626e3c5814bcf053629e45c0

    • SHA1

      472d5b99bbe9df619a278a9c68cf7b5a96e4da07

    • SHA256

      9a55bd3b50b7c42ca70f02863a552d4b31beed7cfe34a746960c969082816628

    • SHA512

      6143ee7867a87a1410ea5aa126a6f968b19fe84bc8ac58b304a990cf719f95b95905e9a11a9350c2df28d30b6bdbbc890a6d2a331716e3dbc8cc4f6f94ff07a9

    • SSDEEP

      12288:w+67XR9JSSxvYGdodHDusQHNd1KidKjttRYLwU:w+6N986Y7DusQHNd1KidKjttRYLwU

    Score
    10/10
    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks