General

  • Target

    28420e39aab7c61d7297a069558d6680_NeikiAnalytics.exe

  • Size

    226KB

  • Sample

    240531-xdg6mahb9v

  • MD5

    28420e39aab7c61d7297a069558d6680

  • SHA1

    8ddc6a42c785a944b36f249e2426cdecf730e7b6

  • SHA256

    acc3d3878de383ec45b776d694e73d54c4f5449e0bc0e0a6d551aa4e201c85e7

  • SHA512

    fea87e91a834f806369cfe2bbcd632b903f43989b18770468f85e4844c1baecfcd23235e08fb60ecedf935f35c533987b4c060d4ae657f5426309202fedea763

  • SSDEEP

    6144:mpwsjXV/ba8VHiVtk0XfxqySSKpRmSKeTk7eT5ABrnL8MdYg:MFTIVtd5IKrEAlnLAg

Malware Config

Targets

    • Target

      28420e39aab7c61d7297a069558d6680_NeikiAnalytics.exe

    • Size

      226KB

    • MD5

      28420e39aab7c61d7297a069558d6680

    • SHA1

      8ddc6a42c785a944b36f249e2426cdecf730e7b6

    • SHA256

      acc3d3878de383ec45b776d694e73d54c4f5449e0bc0e0a6d551aa4e201c85e7

    • SHA512

      fea87e91a834f806369cfe2bbcd632b903f43989b18770468f85e4844c1baecfcd23235e08fb60ecedf935f35c533987b4c060d4ae657f5426309202fedea763

    • SSDEEP

      6144:mpwsjXV/ba8VHiVtk0XfxqySSKpRmSKeTk7eT5ABrnL8MdYg:MFTIVtd5IKrEAlnLAg

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks