General

  • Target

    f85835231810db6bd9884e6e857c6140_NeikiAnalytics.exe

  • Size

    1000KB

  • Sample

    240530-mmpa7afc86

  • MD5

    f85835231810db6bd9884e6e857c6140

  • SHA1

    c9e1bd594d93bc307ed790b492484d898ec6b5e7

  • SHA256

    924c1f8ddb69bbc93b9216561593d1cd2c5c50baf1dccedb1374a136b88cbe33

  • SHA512

    beb5db1b30ad2a7de196a6af9e4a1adab25b0a22fd9573b40fe09cff97f76954a7f14f3c500d80425b956b0c98468c28ea886e76736f621212a38a3f9d4d8ca1

  • SSDEEP

    12288:srnLSW81tHBFLPj3TmLnWrOxNuxC97hFq9o7:srnLS51tHBFLPj368MoC9Dq9o7

Malware Config

Targets

    • Target

      f85835231810db6bd9884e6e857c6140_NeikiAnalytics.exe

    • Size

      1000KB

    • MD5

      f85835231810db6bd9884e6e857c6140

    • SHA1

      c9e1bd594d93bc307ed790b492484d898ec6b5e7

    • SHA256

      924c1f8ddb69bbc93b9216561593d1cd2c5c50baf1dccedb1374a136b88cbe33

    • SHA512

      beb5db1b30ad2a7de196a6af9e4a1adab25b0a22fd9573b40fe09cff97f76954a7f14f3c500d80425b956b0c98468c28ea886e76736f621212a38a3f9d4d8ca1

    • SSDEEP

      12288:srnLSW81tHBFLPj3TmLnWrOxNuxC97hFq9o7:srnLS51tHBFLPj368MoC9Dq9o7

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks