General

  • Target

    8062779e7e41d28817c9a799ad7c6f00_NeikiAnalytics.exe

  • Size

    113KB

  • Sample

    240531-1a8e7adh9y

  • MD5

    8062779e7e41d28817c9a799ad7c6f00

  • SHA1

    5c1c28a1849a52b33348934f42c91436bbe98b38

  • SHA256

    353bbf60fce3d760c1f6559d580030e2db3900c4d7606e59d075c4d8a4c19c40

  • SHA512

    932937e68a17d4536c1104c0bfc7a0068882b38bcf3101024c1fc3a1bbdfc02cac9195dab54aa4daba44426b47fa0ee1268e3662bd3099128a259dc3b77600e2

  • SSDEEP

    3072:sSfp2aIkaIm9X7lugCe8uvQa7gRj9/S2Kn:PpDLm9XZISMRNF

Malware Config

Targets

    • Target

      8062779e7e41d28817c9a799ad7c6f00_NeikiAnalytics.exe

    • Size

      113KB

    • MD5

      8062779e7e41d28817c9a799ad7c6f00

    • SHA1

      5c1c28a1849a52b33348934f42c91436bbe98b38

    • SHA256

      353bbf60fce3d760c1f6559d580030e2db3900c4d7606e59d075c4d8a4c19c40

    • SHA512

      932937e68a17d4536c1104c0bfc7a0068882b38bcf3101024c1fc3a1bbdfc02cac9195dab54aa4daba44426b47fa0ee1268e3662bd3099128a259dc3b77600e2

    • SSDEEP

      3072:sSfp2aIkaIm9X7lugCe8uvQa7gRj9/S2Kn:PpDLm9XZISMRNF

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks