General

  • Target

    05d9dae3e71da735b8fac978b25485d0_NeikiAnalytics.exe

  • Size

    664KB

  • Sample

    240530-p4pdmahc6x

  • MD5

    05d9dae3e71da735b8fac978b25485d0

  • SHA1

    805dae84e7a12d26aedaa2215d88390e99a0140a

  • SHA256

    d6ceeb0cdfe71a5d144490dc1cce88cf494b167697b209a93352cbe56bb0f60a

  • SHA512

    8c560c2eb5a8534765b53ce8688f24796996ad9de0b2aa835681bcec7fe54bf7685e2bf60234f03ddcb03aa7f4dab8dd945acecd141e3166f6d508a6d3b7e4c0

  • SSDEEP

    12288:IygzpV6yYP4rbpV6yYPg058KpV6yYPNUir2MhNl6zX3w9As/xO23WM6tJmDYjmRS:ILzW4XWleKWNUir2MhNl6zX3w9As/xOX

Malware Config

Targets

    • Target

      05d9dae3e71da735b8fac978b25485d0_NeikiAnalytics.exe

    • Size

      664KB

    • MD5

      05d9dae3e71da735b8fac978b25485d0

    • SHA1

      805dae84e7a12d26aedaa2215d88390e99a0140a

    • SHA256

      d6ceeb0cdfe71a5d144490dc1cce88cf494b167697b209a93352cbe56bb0f60a

    • SHA512

      8c560c2eb5a8534765b53ce8688f24796996ad9de0b2aa835681bcec7fe54bf7685e2bf60234f03ddcb03aa7f4dab8dd945acecd141e3166f6d508a6d3b7e4c0

    • SSDEEP

      12288:IygzpV6yYP4rbpV6yYPg058KpV6yYPNUir2MhNl6zX3w9As/xO23WM6tJmDYjmRS:ILzW4XWleKWNUir2MhNl6zX3w9As/xOX

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks