General

  • Target

    35a1c2771060d18a6aa58a26caec1bb0_NeikiAnalytics.exe

  • Size

    199KB

  • Sample

    240531-yfr92sbf98

  • MD5

    35a1c2771060d18a6aa58a26caec1bb0

  • SHA1

    c98f6d08d1fe688e60acc992ddcb7f4d61adf7df

  • SHA256

    1adfa928eff926612562d2f6aa77e8b0ef11597399a934a4a5ecb81b70ee33d7

  • SHA512

    e543de3febc7c3825be9cfddc566025c4a6a47e5fc99f0b6a3e9855825735774c5186c2e36f7010d2cd7f8e4f30f621299bb1172057417762d60d3465f697568

  • SSDEEP

    6144:MhZ6I2+UwSZSCZj81+jq4peBK034YOmFz1h:MhDtGZSCG1+jheBbOmFxh

Malware Config

Targets

    • Target

      35a1c2771060d18a6aa58a26caec1bb0_NeikiAnalytics.exe

    • Size

      199KB

    • MD5

      35a1c2771060d18a6aa58a26caec1bb0

    • SHA1

      c98f6d08d1fe688e60acc992ddcb7f4d61adf7df

    • SHA256

      1adfa928eff926612562d2f6aa77e8b0ef11597399a934a4a5ecb81b70ee33d7

    • SHA512

      e543de3febc7c3825be9cfddc566025c4a6a47e5fc99f0b6a3e9855825735774c5186c2e36f7010d2cd7f8e4f30f621299bb1172057417762d60d3465f697568

    • SSDEEP

      6144:MhZ6I2+UwSZSCZj81+jq4peBK034YOmFz1h:MhDtGZSCG1+jheBbOmFxh

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks