General

  • Target

    2071586a9e7aa68966f655298cb25110_NeikiAnalytics.exe

  • Size

    208KB

  • Sample

    240530-pd4evshf34

  • MD5

    2071586a9e7aa68966f655298cb25110

  • SHA1

    8517e6cc3b147a9ae8017070e162a348c572c6be

  • SHA256

    338754300eb0ea6d3b5969814cf5553d25a4b7776d7204578547b31ea637a4f2

  • SHA512

    5eff2e40d61781e2892bc3ad4065e3dd3092ec2de77cfbad4614370cb19fc6c4ce51ed8f11d9417a1212100d550ba818b439ca99d99496deb141df84237e57ef

  • SSDEEP

    6144:6Hv0twYsbohDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55KmC:8e0XChtMtkM71r1MSXqPix55Kx

Malware Config

Targets

    • Target

      2071586a9e7aa68966f655298cb25110_NeikiAnalytics.exe

    • Size

      208KB

    • MD5

      2071586a9e7aa68966f655298cb25110

    • SHA1

      8517e6cc3b147a9ae8017070e162a348c572c6be

    • SHA256

      338754300eb0ea6d3b5969814cf5553d25a4b7776d7204578547b31ea637a4f2

    • SHA512

      5eff2e40d61781e2892bc3ad4065e3dd3092ec2de77cfbad4614370cb19fc6c4ce51ed8f11d9417a1212100d550ba818b439ca99d99496deb141df84237e57ef

    • SSDEEP

      6144:6Hv0twYsbohDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55KmC:8e0XChtMtkM71r1MSXqPix55Kx

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks