General

  • Target

    7e3eceac56ba59ea084b584fa4e47100_NeikiAnalytics.exe

  • Size

    669KB

  • Sample

    240531-y55axaca2x

  • MD5

    7e3eceac56ba59ea084b584fa4e47100

  • SHA1

    035d112b399504dd96f9aab98018d64354775c72

  • SHA256

    4c1364f6118c29eae6f1c8a9652b18b00465d0172ab191be61ffa13b2bd4c778

  • SHA512

    16bdc27cdbafe03cf556bd7870f80ce316cfe7e386e7826c98a291bf3eb7e910ca556bea686352f71771fe2a070fb97c388a7cd9bb80e12d45ee1c4bd199ceef

  • SSDEEP

    12288:SMchemeVKhMpQnqr+cI3a72LXrY6x46UbR/qYglMi:RRchMpQnqrdX72LbY6x46uR/qYglMi

Malware Config

Targets

    • Target

      7e3eceac56ba59ea084b584fa4e47100_NeikiAnalytics.exe

    • Size

      669KB

    • MD5

      7e3eceac56ba59ea084b584fa4e47100

    • SHA1

      035d112b399504dd96f9aab98018d64354775c72

    • SHA256

      4c1364f6118c29eae6f1c8a9652b18b00465d0172ab191be61ffa13b2bd4c778

    • SHA512

      16bdc27cdbafe03cf556bd7870f80ce316cfe7e386e7826c98a291bf3eb7e910ca556bea686352f71771fe2a070fb97c388a7cd9bb80e12d45ee1c4bd199ceef

    • SSDEEP

      12288:SMchemeVKhMpQnqr+cI3a72LXrY6x46UbR/qYglMi:RRchMpQnqrdX72LbY6x46uR/qYglMi

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks