General

  • Target

    de70e1ced91ad5fd7279f4874593e9b0_NeikiAnalytics.exe

  • Size

    256KB

  • Sample

    240530-j2fe2sbd9z

  • MD5

    de70e1ced91ad5fd7279f4874593e9b0

  • SHA1

    4b5923d7167c7d2878d589aa7867238ddcd3409e

  • SHA256

    68ef805a3833f592694019e2d7e6afd561cb665ce3bcc47057604c145f633a1b

  • SHA512

    dc3734e5fa9002541ca7382d2d6f48744226097fa1306d9dde51d64f9fba9946e9438eb09368d65899bfff154dc9b8e77fa03c19bbd7d3a7c3b065f8a0beeff0

  • SSDEEP

    6144:KmA6WsjlpmmxieQbWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/YRU:KLqlpJxifbWGRdA6sQhPbWGRdA6sQxU

Malware Config

Targets

    • Target

      de70e1ced91ad5fd7279f4874593e9b0_NeikiAnalytics.exe

    • Size

      256KB

    • MD5

      de70e1ced91ad5fd7279f4874593e9b0

    • SHA1

      4b5923d7167c7d2878d589aa7867238ddcd3409e

    • SHA256

      68ef805a3833f592694019e2d7e6afd561cb665ce3bcc47057604c145f633a1b

    • SHA512

      dc3734e5fa9002541ca7382d2d6f48744226097fa1306d9dde51d64f9fba9946e9438eb09368d65899bfff154dc9b8e77fa03c19bbd7d3a7c3b065f8a0beeff0

    • SSDEEP

      6144:KmA6WsjlpmmxieQbWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/YRU:KLqlpJxifbWGRdA6sQhPbWGRdA6sQxU

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks