General

  • Target

    00794fd7f76eb659e9d099b8199b4d50_NeikiAnalytics.exe

  • Size

    459KB

  • Sample

    240601-1zxpzsgb9y

  • MD5

    00794fd7f76eb659e9d099b8199b4d50

  • SHA1

    ddfb94836eec2e6ddd0ff16de04fe62e81e30b46

  • SHA256

    a998e8bcbcabe6f675dfcf08aa5f9c8b7b3ed22cdc786f87926a0c31f4eac905

  • SHA512

    850ba328864b802b472debfaedef06af3617e33dc1c708f87368aa51a45e9a855711c9530ff6b56ee2d3731325d7d012dc9b530ab3de104e7169839e8f475017

  • SSDEEP

    12288:3vrFGwIKfDy/phgeczlqczZd7LFB3oFHoGnFjVZnykJGvpHGdt:3vowFfDy/phgeczlqczZd7LFB3oFHoGF

Malware Config

Targets

    • Target

      00794fd7f76eb659e9d099b8199b4d50_NeikiAnalytics.exe

    • Size

      459KB

    • MD5

      00794fd7f76eb659e9d099b8199b4d50

    • SHA1

      ddfb94836eec2e6ddd0ff16de04fe62e81e30b46

    • SHA256

      a998e8bcbcabe6f675dfcf08aa5f9c8b7b3ed22cdc786f87926a0c31f4eac905

    • SHA512

      850ba328864b802b472debfaedef06af3617e33dc1c708f87368aa51a45e9a855711c9530ff6b56ee2d3731325d7d012dc9b530ab3de104e7169839e8f475017

    • SSDEEP

      12288:3vrFGwIKfDy/phgeczlqczZd7LFB3oFHoGnFjVZnykJGvpHGdt:3vowFfDy/phgeczlqczZd7LFB3oFHoGF

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks