General

  • Target

    f19346ca405efd0fe5e0da64b1c761d0_NeikiAnalytics.exe

  • Size

    1.4MB

  • Sample

    240531-xh1hrsac56

  • MD5

    f19346ca405efd0fe5e0da64b1c761d0

  • SHA1

    1496c2b98eac0851b82e17a3f40e103042cfbc57

  • SHA256

    1fccd3bec60ce87e3fac650a8ddfa6028eecae55783e0246f200f459a8f63135

  • SHA512

    59f6baade88af4cf404b9d209a54d1e4166a0055b1a763ef1db77dfaaad0ba7cf70e75873bacf7b6dfb4e53d315a303e472388e292083eded03c86ceb3569558

  • SSDEEP

    12288:CFpACzXjOYpV6yYPI3cpV6yYPeHCXwpnsKvNA+XTvZHWuEo3oWL5g:CFpACzXjOYWHWIpsKv2EvZHp3oWNg

Malware Config

Targets

    • Target

      f19346ca405efd0fe5e0da64b1c761d0_NeikiAnalytics.exe

    • Size

      1.4MB

    • MD5

      f19346ca405efd0fe5e0da64b1c761d0

    • SHA1

      1496c2b98eac0851b82e17a3f40e103042cfbc57

    • SHA256

      1fccd3bec60ce87e3fac650a8ddfa6028eecae55783e0246f200f459a8f63135

    • SHA512

      59f6baade88af4cf404b9d209a54d1e4166a0055b1a763ef1db77dfaaad0ba7cf70e75873bacf7b6dfb4e53d315a303e472388e292083eded03c86ceb3569558

    • SSDEEP

      12288:CFpACzXjOYpV6yYPI3cpV6yYPeHCXwpnsKvNA+XTvZHWuEo3oWL5g:CFpACzXjOYWHWIpsKv2EvZHp3oWNg

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks