Overview

overview

10

Static

static

10

0463156dfa...cs.exe

windows7-x64

10

0463156dfa...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0463156dfa383a24de34f048efb9c650_NeikiAnalytics.exe

  • Size

    240KB

  • Sample

    240526-1gnz5ach2x

  • MD5

    0463156dfa383a24de34f048efb9c650

  • SHA1

    6fc228e3208053e648da9ac4822f6bccb6f38fb7

  • SHA256

    7161d7afd0c5d4b6662680c29c1f73b4e9c59b7b6adecb1392a59839b88cff75

  • SHA512

    2552399ff372ca328a36f1e3ec74512738ec8e9200d1c6c99171c7bcb49fa2759329375b23dff2e940efa84ac8e41864d1b9557756119ebeb369c16b863b20d8

  • SSDEEP

    3072:ydEUfKj8BYbDiC1ZTK7sxtLUIGT9kXH0hga4PjBy2XiXV/mwTwyg4K+mpPNHdUpz:yUSiZTK40V2a4PdyoeV/Hwz4zmpPNipz

Score
10/10
berbewbackdoordroppertrojanupx

Malware Config

Targets

    • Target

      0463156dfa383a24de34f048efb9c650_NeikiAnalytics.exe

    • Size

      240KB

    • MD5

      0463156dfa383a24de34f048efb9c650

    • SHA1

      6fc228e3208053e648da9ac4822f6bccb6f38fb7

    • SHA256

      7161d7afd0c5d4b6662680c29c1f73b4e9c59b7b6adecb1392a59839b88cff75

    • SHA512

      2552399ff372ca328a36f1e3ec74512738ec8e9200d1c6c99171c7bcb49fa2759329375b23dff2e940efa84ac8e41864d1b9557756119ebeb369c16b863b20d8

    • SSDEEP

      3072:ydEUfKj8BYbDiC1ZTK7sxtLUIGT9kXH0hga4PjBy2XiXV/mwTwyg4K+mpPNHdUpz:yUSiZTK40V2a4PdyoeV/Hwz4zmpPNipz

    Score
    10/10
    backdoordroppertrojanupx

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

      backdoortrojandropper

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks