General

  • Target

    f3330a2acd55ebc826bb71b0b49468f0_NeikiAnalytics.exe

  • Size

    1024KB

  • Sample

    240531-wq5a9aha28

  • MD5

    f3330a2acd55ebc826bb71b0b49468f0

  • SHA1

    b515bc2dd50071b8c0f55f928a0ddda0f47432f0

  • SHA256

    2d98355ec14bacfd859ea380a34b4b9a69ee426a82360fa30782d93cee90521a

  • SHA512

    af15479a64449597b9150a1476b5d91a7d14d5ef09355e1168c4c03aed3d617a970baf14d962cddc8ec7706b3311d6e18b57022bfeceff60d59eb9c3e43c7023

  • SSDEEP

    24576:WptaSHFaZRBEYyqmaf2qwiHPKgRC4gvGZl6snARe:WvaSHFaZRBEYyqmS2DiHPKQgmN

Malware Config

Targets

    • Target

      f3330a2acd55ebc826bb71b0b49468f0_NeikiAnalytics.exe

    • Size

      1024KB

    • MD5

      f3330a2acd55ebc826bb71b0b49468f0

    • SHA1

      b515bc2dd50071b8c0f55f928a0ddda0f47432f0

    • SHA256

      2d98355ec14bacfd859ea380a34b4b9a69ee426a82360fa30782d93cee90521a

    • SHA512

      af15479a64449597b9150a1476b5d91a7d14d5ef09355e1168c4c03aed3d617a970baf14d962cddc8ec7706b3311d6e18b57022bfeceff60d59eb9c3e43c7023

    • SSDEEP

      24576:WptaSHFaZRBEYyqmaf2qwiHPKgRC4gvGZl6snARe:WvaSHFaZRBEYyqmS2DiHPKQgmN

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks