General

  • Target

    8824a85fc6c87ee8ac7bf80be0b61a50_NeikiAnalytics.exe

  • Size

    401KB

  • Sample

    240601-bvdnwade83

  • MD5

    8824a85fc6c87ee8ac7bf80be0b61a50

  • SHA1

    3d6d0a1c93425db32ab1419addc3a4b3c0d41f4c

  • SHA256

    49ccf2d53882d09574366052ba809d6de890c3cee8d864cf29a7e06c4042fe3c

  • SHA512

    b957a852e604fe471a7696e1bb879661beda5322a9a4353e4bb7acc39513cf7c19b45b0fc6746f879ec401a5e8422d1476a0d25067df1b1c34591a3021d9a9c9

  • SSDEEP

    6144:EImvCdAkHgLk1LTGndpui6yYPaIGckfru5xyDpui6yYPaIGckSU05836PGyA7:jZgLkondpV6yYP4rbpV6yYPg058KrY

Malware Config

Targets

    • Target

      8824a85fc6c87ee8ac7bf80be0b61a50_NeikiAnalytics.exe

    • Size

      401KB

    • MD5

      8824a85fc6c87ee8ac7bf80be0b61a50

    • SHA1

      3d6d0a1c93425db32ab1419addc3a4b3c0d41f4c

    • SHA256

      49ccf2d53882d09574366052ba809d6de890c3cee8d864cf29a7e06c4042fe3c

    • SHA512

      b957a852e604fe471a7696e1bb879661beda5322a9a4353e4bb7acc39513cf7c19b45b0fc6746f879ec401a5e8422d1476a0d25067df1b1c34591a3021d9a9c9

    • SSDEEP

      6144:EImvCdAkHgLk1LTGndpui6yYPaIGckfru5xyDpui6yYPaIGckSU05836PGyA7:jZgLkondpV6yYP4rbpV6yYPg058KrY

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks