General

  • Target

    ff606a9bdf3f5932295dcc75e5b53340_NeikiAnalytics.exe

  • Size

    332KB

  • Sample

    240531-tnz8eadf6x

  • MD5

    ff606a9bdf3f5932295dcc75e5b53340

  • SHA1

    97b2798d9a35460be7237d9af3be70527fc525ae

  • SHA256

    42ab2fbe84e795a971fc4e4a3bd302820486e4371b67e361085be710e58fc325

  • SHA512

    e3c3f4ff82a771b13da5a392a6a0c3c133d81e307bba4867694b91ee04ab3bc7bb982e4c931c0f22c0c349821366a87b29dcb59a3e877bb369b5188084f1d40b

  • SSDEEP

    6144:j2UYKUsXRFhr1R6xie8opqXgKTpgtYOWlGmMvkqAlDiyUvpQf4vt74mD50e4mgUD:mKUsXd1RFpogXnV4MlGN1AlDkvXvtxDN

Malware Config

Targets

    • Target

      ff606a9bdf3f5932295dcc75e5b53340_NeikiAnalytics.exe

    • Size

      332KB

    • MD5

      ff606a9bdf3f5932295dcc75e5b53340

    • SHA1

      97b2798d9a35460be7237d9af3be70527fc525ae

    • SHA256

      42ab2fbe84e795a971fc4e4a3bd302820486e4371b67e361085be710e58fc325

    • SHA512

      e3c3f4ff82a771b13da5a392a6a0c3c133d81e307bba4867694b91ee04ab3bc7bb982e4c931c0f22c0c349821366a87b29dcb59a3e877bb369b5188084f1d40b

    • SSDEEP

      6144:j2UYKUsXRFhr1R6xie8opqXgKTpgtYOWlGmMvkqAlDiyUvpQf4vt74mD50e4mgUD:mKUsXd1RFpogXnV4MlGN1AlDkvXvtxDN

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks