Overview

overview

10

Static

static

10

211728eab6...cs.exe

windows7-x64

10

211728eab6...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    211728eab6783e0c25f1f47411453fe0_NeikiAnalytics.exe

  • Size

    94KB

  • Sample

    240527-2f1g7scd7x

  • MD5

    211728eab6783e0c25f1f47411453fe0

  • SHA1

    be742e0d9b2c6636968021f6da4b5192e3fb0231

  • SHA256

    753a05f72572e182d8c78620ee41ae836c20878184324c27d520a3cb261c7bdd

  • SHA512

    07b9227150844261d0e9eeadcbbb4c66d57110bd609fad4b1ae6929e38f66c6eb52be5885e99959e7d9d988f620bacb917d66280393cce6b4c76d3cb2ac214b4

  • SSDEEP

    1536:uqONLX9ukV5LU/2mfDUYoihRm2LkaIZTJ+7LhkiB0MPiKeEAgv:jQLXjV5Lw2mfILYtkaMU7uihJ5v

Score
10/10
berbewbackdoordropperpersistencetrojan

Malware Config

Targets

    • Target

      211728eab6783e0c25f1f47411453fe0_NeikiAnalytics.exe

    • Size

      94KB

    • MD5

      211728eab6783e0c25f1f47411453fe0

    • SHA1

      be742e0d9b2c6636968021f6da4b5192e3fb0231

    • SHA256

      753a05f72572e182d8c78620ee41ae836c20878184324c27d520a3cb261c7bdd

    • SHA512

      07b9227150844261d0e9eeadcbbb4c66d57110bd609fad4b1ae6929e38f66c6eb52be5885e99959e7d9d988f620bacb917d66280393cce6b4c76d3cb2ac214b4

    • SSDEEP

      1536:uqONLX9ukV5LU/2mfDUYoihRm2LkaIZTJ+7LhkiB0MPiKeEAgv:jQLXjV5Lw2mfILYtkaMU7uihJ5v

    Score
    10/10
    backdoordropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

      backdoortrojandropper

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks