General

  • Target

    8d1b1f04de2a4d06b0cc0d4f3bc9fd10_NeikiAnalytics.exe

  • Size

    1.2MB

  • Sample

    240601-evd67ahf5y

  • MD5

    8d1b1f04de2a4d06b0cc0d4f3bc9fd10

  • SHA1

    0130503d6a0d450ef9ca3cdca4322a320e623ba5

  • SHA256

    0c3407e171cf2305ee6d52a8f8aab6a1dac4c7bb7edb496ee56dbb3c48fb9109

  • SHA512

    bc975fd573bffb9be18f3eeaef9ebb697331584d05857b0183b556bea0aa67c7302afba35eedbf71d0c6b662b4b0346b1406dd3f812e1dd9d29ada1dec80a9af

  • SSDEEP

    12288:D6rPCOUFHCXwpnsKvNA+XTvZHWuEo3oWbvrec:erPCOUZpsKv2EvZHp3oWbvrec

Malware Config

Targets

    • Target

      8d1b1f04de2a4d06b0cc0d4f3bc9fd10_NeikiAnalytics.exe

    • Size

      1.2MB

    • MD5

      8d1b1f04de2a4d06b0cc0d4f3bc9fd10

    • SHA1

      0130503d6a0d450ef9ca3cdca4322a320e623ba5

    • SHA256

      0c3407e171cf2305ee6d52a8f8aab6a1dac4c7bb7edb496ee56dbb3c48fb9109

    • SHA512

      bc975fd573bffb9be18f3eeaef9ebb697331584d05857b0183b556bea0aa67c7302afba35eedbf71d0c6b662b4b0346b1406dd3f812e1dd9d29ada1dec80a9af

    • SSDEEP

      12288:D6rPCOUFHCXwpnsKvNA+XTvZHWuEo3oWbvrec:erPCOUZpsKv2EvZHp3oWbvrec

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks