General

  • Target

    5ca88652d5b36b1a3973310a3d189c00_NeikiAnalytics.exe

  • Size

    1.3MB

  • Sample

    240530-aw59vagg69

  • MD5

    5ca88652d5b36b1a3973310a3d189c00

  • SHA1

    ebd0987d31bab79ba688c821af177df49b6dbbb4

  • SHA256

    e46b95a38db141e52c897de8f9d76c7588446c099427f11bbc489997df72d4a8

  • SHA512

    eb3c02cdd7ab1a28284ba8e8b7114f752ed2b01dd901db1c341fafdc341b816947b3b4f0a839ef0bfdc76cff54c7b01674d1d89c9ead5b3faabb0c829720657a

  • SSDEEP

    24576:ch8vr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:ch8kB9f0VP91v92W805IPSOdKgzEoxrS

Malware Config

Targets

    • Target

      5ca88652d5b36b1a3973310a3d189c00_NeikiAnalytics.exe

    • Size

      1.3MB

    • MD5

      5ca88652d5b36b1a3973310a3d189c00

    • SHA1

      ebd0987d31bab79ba688c821af177df49b6dbbb4

    • SHA256

      e46b95a38db141e52c897de8f9d76c7588446c099427f11bbc489997df72d4a8

    • SHA512

      eb3c02cdd7ab1a28284ba8e8b7114f752ed2b01dd901db1c341fafdc341b816947b3b4f0a839ef0bfdc76cff54c7b01674d1d89c9ead5b3faabb0c829720657a

    • SSDEEP

      24576:ch8vr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:ch8kB9f0VP91v92W805IPSOdKgzEoxrS

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks