General

  • Target

    3ce41a91a829c0331d9638fafba62bd0_NeikiAnalytics.exe

  • Size

    128KB

  • Sample

    240601-q1majadg6w

  • MD5

    3ce41a91a829c0331d9638fafba62bd0

  • SHA1

    2c7e1f9967cf48147bc8e671bbd13577f81b2dc3

  • SHA256

    4364644d0333e2bf37ca37e81916d5e4e4e5abe2c5e5994ceb73cac888108e9a

  • SHA512

    fd49fdcf664caec62b0e88e2b701c4a1a2a1d29b5b71bde315e0c67529ee4c8164663a78e5f5c272d810c7be16c8ff2bc6d40e0d81c22845c5e0c90b0bdb2cc5

  • SSDEEP

    3072:iHQKwR9pKFTpOCGQ3WGS2/BhHmiImXJ2fYdV46nfPyxWhj8NCM/r:QFGF4BhHmNEcYj9nhV8NCU

Malware Config

Targets

    • Target

      3ce41a91a829c0331d9638fafba62bd0_NeikiAnalytics.exe

    • Size

      128KB

    • MD5

      3ce41a91a829c0331d9638fafba62bd0

    • SHA1

      2c7e1f9967cf48147bc8e671bbd13577f81b2dc3

    • SHA256

      4364644d0333e2bf37ca37e81916d5e4e4e5abe2c5e5994ceb73cac888108e9a

    • SHA512

      fd49fdcf664caec62b0e88e2b701c4a1a2a1d29b5b71bde315e0c67529ee4c8164663a78e5f5c272d810c7be16c8ff2bc6d40e0d81c22845c5e0c90b0bdb2cc5

    • SSDEEP

      3072:iHQKwR9pKFTpOCGQ3WGS2/BhHmiImXJ2fYdV46nfPyxWhj8NCM/r:QFGF4BhHmNEcYj9nhV8NCU

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks