General

  • Target

    59e914d229bf8eeb7a3bae2dc553def0_NeikiAnalytics.exe

  • Size

    115KB

  • Sample

    240529-277etsee54

  • MD5

    59e914d229bf8eeb7a3bae2dc553def0

  • SHA1

    2c4edc7afd82f5deea0637a7c35ca15409004314

  • SHA256

    32eb7b5de75c6b29710d7e28077219c049d045e843b5666b5b7635ae8d871a0b

  • SHA512

    1488fe3cff156ae23be91788686c4030e74aea8815ac28236709b0d171cd97e2c73e7abe1f380b0eebc48ca337fb380d189f614d48d012ab02218e7aeb365939

  • SSDEEP

    3072:Fqcaq9LHPJXrGMfNdbrIR/SoQUP5u30KqTKr4:k+LvJ1NhrIooQUPoDqTKE

Malware Config

Targets

    • Target

      59e914d229bf8eeb7a3bae2dc553def0_NeikiAnalytics.exe

    • Size

      115KB

    • MD5

      59e914d229bf8eeb7a3bae2dc553def0

    • SHA1

      2c4edc7afd82f5deea0637a7c35ca15409004314

    • SHA256

      32eb7b5de75c6b29710d7e28077219c049d045e843b5666b5b7635ae8d871a0b

    • SHA512

      1488fe3cff156ae23be91788686c4030e74aea8815ac28236709b0d171cd97e2c73e7abe1f380b0eebc48ca337fb380d189f614d48d012ab02218e7aeb365939

    • SSDEEP

      3072:Fqcaq9LHPJXrGMfNdbrIR/SoQUP5u30KqTKr4:k+LvJ1NhrIooQUPoDqTKE

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks