General

  • Target

    75b5d0f22025d4824a8ede95dba16f50_NeikiAnalytics.exe

  • Size

    122KB

  • Sample

    240523-cpxp8sab7w

  • MD5

    75b5d0f22025d4824a8ede95dba16f50

  • SHA1

    709d481263f8b051dd4bc8797578ebaea48cc63d

  • SHA256

    33e9ee4ef4b73f35091aea167dc74a999e8b9cc9f7e2f43385fe2fab48eef856

  • SHA512

    d5e164eb853cc2e4d13711e0236ae0a5b4ec3bbafe48c7b4d036d3db2b0f2acb64c5bebfa788edd3022fc1a1194f3f59871de2d5d023a5af3ae3192f16f0c961

  • SSDEEP

    1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4u:6u8ANCUdgfmD7zey0KUj6TjR9i4u

Malware Config

Targets

    • Target

      75b5d0f22025d4824a8ede95dba16f50_NeikiAnalytics.exe

    • Size

      122KB

    • MD5

      75b5d0f22025d4824a8ede95dba16f50

    • SHA1

      709d481263f8b051dd4bc8797578ebaea48cc63d

    • SHA256

      33e9ee4ef4b73f35091aea167dc74a999e8b9cc9f7e2f43385fe2fab48eef856

    • SHA512

      d5e164eb853cc2e4d13711e0236ae0a5b4ec3bbafe48c7b4d036d3db2b0f2acb64c5bebfa788edd3022fc1a1194f3f59871de2d5d023a5af3ae3192f16f0c961

    • SSDEEP

      1536:lvm1Fu8AjYaFwjRUdW7fmyY7aZYJVmy0KQbj6vbjuKoauGi4u:6u8ANCUdgfmD7zey0KUj6TjR9i4u

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Modifies visibility of file extensions in Explorer

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Hide Artifacts

1
T1564

Hidden Files and Directories

1
T1564.001

Modify Registry

2
T1112

Discovery

System Information Discovery

1
T1082

Tasks