General

  • Target

    e9a40bbd7dbb22fa18f84c08f93d4220_NeikiAnalytics.exe

  • Size

    844KB

  • Sample

    240601-pa4apaca2x

  • MD5

    e9a40bbd7dbb22fa18f84c08f93d4220

  • SHA1

    754acde289e58a712781d69d007a5b3558e3acf4

  • SHA256

    4cb383a751daa45b03cc37ed35a83c36251dfdd3b7348a34b5518c476da1f60f

  • SHA512

    012e77b875203e4a61f6c3ac0e1cec2212e73069e6ac6a01c3ce172a3740da207a38cc881d665bfbc10a1e30e68a19ed367908f20c2d2f10f022282e9f8163bb

  • SSDEEP

    24576:GnxH5W3Tnbc53cp6p5vihMpQnqrdX72LbY6x46uR/qYglMS:GnxH5W3TbGBihw+cdX2x46uhqllMS

Malware Config

Targets

    • Target

      e9a40bbd7dbb22fa18f84c08f93d4220_NeikiAnalytics.exe

    • Size

      844KB

    • MD5

      e9a40bbd7dbb22fa18f84c08f93d4220

    • SHA1

      754acde289e58a712781d69d007a5b3558e3acf4

    • SHA256

      4cb383a751daa45b03cc37ed35a83c36251dfdd3b7348a34b5518c476da1f60f

    • SHA512

      012e77b875203e4a61f6c3ac0e1cec2212e73069e6ac6a01c3ce172a3740da207a38cc881d665bfbc10a1e30e68a19ed367908f20c2d2f10f022282e9f8163bb

    • SSDEEP

      24576:GnxH5W3Tnbc53cp6p5vihMpQnqrdX72LbY6x46uR/qYglMS:GnxH5W3TbGBihw+cdX2x46uhqllMS

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks