General

  • Target

    80f755b8fb3d3f959f06c3246cd69020_NeikiAnalytics.exe

  • Size

    1.3MB

  • Sample

    240531-1naq3see5s

  • MD5

    80f755b8fb3d3f959f06c3246cd69020

  • SHA1

    b0794a20e75532b8c775318a451dc88033b24dd8

  • SHA256

    ee3e3006edbec3c35c7154b7d0f764683313505ebefced49425bd4ddbee223b6

  • SHA512

    cc155acc5aa9293988904f8eb084447d82f91dd6445f2c26158ca2b7f797b1e4abafce78b00b8f70c0706cf18490d12eca26e106dae3fca1dc3f4e7c24909889

  • SSDEEP

    24576:POvr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:WkB9f0VP91v92W805IPSOdKgzEoxrlQ3

Malware Config

Targets

    • Target

      80f755b8fb3d3f959f06c3246cd69020_NeikiAnalytics.exe

    • Size

      1.3MB

    • MD5

      80f755b8fb3d3f959f06c3246cd69020

    • SHA1

      b0794a20e75532b8c775318a451dc88033b24dd8

    • SHA256

      ee3e3006edbec3c35c7154b7d0f764683313505ebefced49425bd4ddbee223b6

    • SHA512

      cc155acc5aa9293988904f8eb084447d82f91dd6445f2c26158ca2b7f797b1e4abafce78b00b8f70c0706cf18490d12eca26e106dae3fca1dc3f4e7c24909889

    • SSDEEP

      24576:POvr4B9f01ZmQvrb91v92W9C05wkEPSOdKkrzEoxrC9toC9Dq9onk8:WkB9f0VP91v92W805IPSOdKgzEoxrlQ3

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks