General

  • Target

    cdc8050816de22e0f5a1cb78510647e0_NeikiAnalytics.exe

  • Size

    400KB

  • Sample

    240531-x85v6sbd54

  • MD5

    cdc8050816de22e0f5a1cb78510647e0

  • SHA1

    fc53dea13994db52d4cd1f170d451a976ddcd3da

  • SHA256

    22b171edce5be9b677db62896af813055cc7087e52f8331bb3a617af8d946fca

  • SHA512

    c8c80906106c190ad8dd2df8e98c508ee14e6cf26f93c8ac207d5b136af45302875ae6e8734cda1f68d360957d7b6c90c14ef3c5e557c4580c2a976498558a93

  • SSDEEP

    12288:TPvEZwYJ07kE0KoFtw2gu9RxrBIUbPLwH96/I0lOZ0vbqFB:LPYJ07kE0KoFtw2gu9RxrBIUbPLwH96I

Malware Config

Targets

    • Target

      cdc8050816de22e0f5a1cb78510647e0_NeikiAnalytics.exe

    • Size

      400KB

    • MD5

      cdc8050816de22e0f5a1cb78510647e0

    • SHA1

      fc53dea13994db52d4cd1f170d451a976ddcd3da

    • SHA256

      22b171edce5be9b677db62896af813055cc7087e52f8331bb3a617af8d946fca

    • SHA512

      c8c80906106c190ad8dd2df8e98c508ee14e6cf26f93c8ac207d5b136af45302875ae6e8734cda1f68d360957d7b6c90c14ef3c5e557c4580c2a976498558a93

    • SSDEEP

      12288:TPvEZwYJ07kE0KoFtw2gu9RxrBIUbPLwH96/I0lOZ0vbqFB:LPYJ07kE0KoFtw2gu9RxrBIUbPLwH96I

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks