General

  • Target

    dd83df57a9e341900be2a46ff5782390_NeikiAnalytics.exe

  • Size

    548KB

  • Sample

    240601-ms3e1abb77

  • MD5

    dd83df57a9e341900be2a46ff5782390

  • SHA1

    72458d80d05eaf3a779662203add76457e53a442

  • SHA256

    50b7cbdb0a66e85ee6739badcbf814a9f091a03a79199ced42ac564d42b3051e

  • SHA512

    83ba1b8512b77727f67284b58bcae73a5b99bc17f0dd5ff1ce835c0988204e8749cf85729d6401c3e699f7c541064ebed13b15aaa5df3b84d70b0d78ba4ad985

  • SSDEEP

    12288:+jbvq6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGZ+C8lM1:+Kq5htaSHFaZRBEYyqmaf2qwiHPKgRCW

Malware Config

Targets

    • Target

      dd83df57a9e341900be2a46ff5782390_NeikiAnalytics.exe

    • Size

      548KB

    • MD5

      dd83df57a9e341900be2a46ff5782390

    • SHA1

      72458d80d05eaf3a779662203add76457e53a442

    • SHA256

      50b7cbdb0a66e85ee6739badcbf814a9f091a03a79199ced42ac564d42b3051e

    • SHA512

      83ba1b8512b77727f67284b58bcae73a5b99bc17f0dd5ff1ce835c0988204e8749cf85729d6401c3e699f7c541064ebed13b15aaa5df3b84d70b0d78ba4ad985

    • SSDEEP

      12288:+jbvq6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGZ+C8lM1:+Kq5htaSHFaZRBEYyqmaf2qwiHPKgRCW

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks