General

  • Target

    e180198aa86ddd0c3229b1584918a1f0_NeikiAnalytics.exe

  • Size

    227KB

  • Sample

    240531-yk84csbh79

  • MD5

    e180198aa86ddd0c3229b1584918a1f0

  • SHA1

    8781ffdc75cc37232c326f428484b1924f61cca9

  • SHA256

    598cfe42b06ae477a10337fb3aea099bcec33ae61230dcad0dc63b801f5eaf76

  • SHA512

    d0f90f02aee2c8285a8d600f06d1f8461681c94ec685d9828bde75bddc4e6924ba4193e950319f1351e83d97454bc687d70c12baf912b45ec2da2d8ea1d975a6

  • SSDEEP

    6144:jvNzUzbF68H3S8+b6uyptXIi9u/mp8saZHRD4v4M84Z9YkF/GeHNHyORQdcIKtG:jvw68XS8+d8HamysaZHRD44M3ZzF/Ges

Malware Config

Targets

    • Target

      e180198aa86ddd0c3229b1584918a1f0_NeikiAnalytics.exe

    • Size

      227KB

    • MD5

      e180198aa86ddd0c3229b1584918a1f0

    • SHA1

      8781ffdc75cc37232c326f428484b1924f61cca9

    • SHA256

      598cfe42b06ae477a10337fb3aea099bcec33ae61230dcad0dc63b801f5eaf76

    • SHA512

      d0f90f02aee2c8285a8d600f06d1f8461681c94ec685d9828bde75bddc4e6924ba4193e950319f1351e83d97454bc687d70c12baf912b45ec2da2d8ea1d975a6

    • SSDEEP

      6144:jvNzUzbF68H3S8+b6uyptXIi9u/mp8saZHRD4v4M84Z9YkF/GeHNHyORQdcIKtG:jvw68XS8+d8HamysaZHRD44M3ZzF/Ges

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Modifies visibility of file extensions in Explorer

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks