General

  • Target

    887dda517a682cffa0783af8d14b6190_NeikiAnalytics.exe

  • Size

    89KB

  • Sample

    240601-b2kqrsea39

  • MD5

    887dda517a682cffa0783af8d14b6190

  • SHA1

    d7c2f317749b056756acff3f2b60e4a630bddd86

  • SHA256

    5d407a7eb4284b8e3907f366bf701ffb8fc350a90f757985b6395d22b1424971

  • SHA512

    e70470541a47ea2a5f188338701e1c7245e9f22173f49de6c99c01409692bf17a2ac15463e5236b839adc2a9fcb521fab68fe511bb6479794b0b14590d1565ec

  • SSDEEP

    1536:R9Z2nYdGHHIZPso4Nffpg4LY7KNIcvxTlth6miOFrkbJRQ6D68a+VMKKTRVGFtU8:RmYEnGPL6fRg4acvItebr4MKy3G7UEq+

Malware Config

Targets

    • Target

      887dda517a682cffa0783af8d14b6190_NeikiAnalytics.exe

    • Size

      89KB

    • MD5

      887dda517a682cffa0783af8d14b6190

    • SHA1

      d7c2f317749b056756acff3f2b60e4a630bddd86

    • SHA256

      5d407a7eb4284b8e3907f366bf701ffb8fc350a90f757985b6395d22b1424971

    • SHA512

      e70470541a47ea2a5f188338701e1c7245e9f22173f49de6c99c01409692bf17a2ac15463e5236b839adc2a9fcb521fab68fe511bb6479794b0b14590d1565ec

    • SSDEEP

      1536:R9Z2nYdGHHIZPso4Nffpg4LY7KNIcvxTlth6miOFrkbJRQ6D68a+VMKKTRVGFtU8:RmYEnGPL6fRg4acvItebr4MKy3G7UEq+

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks