General

  • Target

    8e749c631db77984c29d75cbbd3a20d0_NeikiAnalytics.exe

  • Size

    128KB

  • Sample

    240601-fn33eaag4t

  • MD5

    8e749c631db77984c29d75cbbd3a20d0

  • SHA1

    5d2bc2bf59c7dc7e8bf5b9f7041d3c0a9f8b893f

  • SHA256

    1f0b62dc1fd9e4896581ebc82e239c3fc21aa2b017f32b21fb0bfb63ad10987e

  • SHA512

    bcb9eca969df7a8ff7aa4dc782bf187ae2dc972ec986806ad28bf5d16a67aa4e3ba46b2dceac4cfa17f4c28ad33ffe5bdf2a2edb4676be89d2f719cac6958f71

  • SSDEEP

    3072:FVt8JMdyl0E8nK39ueaOuOL0NGa2/BhHmiImXJ2fYdV46nfPyxWhj8NCM/r:FdJnK3IeaOuOLcR4BhHmNEcYj9nhV8NB

Malware Config

Targets

    • Target

      8e749c631db77984c29d75cbbd3a20d0_NeikiAnalytics.exe

    • Size

      128KB

    • MD5

      8e749c631db77984c29d75cbbd3a20d0

    • SHA1

      5d2bc2bf59c7dc7e8bf5b9f7041d3c0a9f8b893f

    • SHA256

      1f0b62dc1fd9e4896581ebc82e239c3fc21aa2b017f32b21fb0bfb63ad10987e

    • SHA512

      bcb9eca969df7a8ff7aa4dc782bf187ae2dc972ec986806ad28bf5d16a67aa4e3ba46b2dceac4cfa17f4c28ad33ffe5bdf2a2edb4676be89d2f719cac6958f71

    • SSDEEP

      3072:FVt8JMdyl0E8nK39ueaOuOL0NGa2/BhHmiImXJ2fYdV46nfPyxWhj8NCM/r:FdJnK3IeaOuOLcR4BhHmNEcYj9nhV8NB

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks