General

  • Target

    24a9a1ae6b8f93226ed909b84bd0e7d0_NeikiAnalytics.exe

  • Size

    366KB

  • Sample

    240601-ql9ghsdc7x

  • MD5

    24a9a1ae6b8f93226ed909b84bd0e7d0

  • SHA1

    b9d877110695e004061b8de62b928fa26eafc174

  • SHA256

    46b27f95924a8c4dcd9af0f0dfefa61e131645beab24cc471ad259cf55f85814

  • SHA512

    1ee2dcb97e5c9f8d281ad91e1ec793f6e7b2dadeabfa204ce1b858d7071fd196c893105a6bc1b1db4fa6a4d7dbc48d9198f30153b7ecba0f4b6e99f7579e8af9

  • SSDEEP

    6144:1LX1+7f4alGgYPqUo5LRlUivKvUmKyIxLDXXoq9FJZCUmKyIxLpmAqkCcoMOk:1LXulTYCtZoivKv32XXf9Do3+IviD

Malware Config

Targets

    • Target

      24a9a1ae6b8f93226ed909b84bd0e7d0_NeikiAnalytics.exe

    • Size

      366KB

    • MD5

      24a9a1ae6b8f93226ed909b84bd0e7d0

    • SHA1

      b9d877110695e004061b8de62b928fa26eafc174

    • SHA256

      46b27f95924a8c4dcd9af0f0dfefa61e131645beab24cc471ad259cf55f85814

    • SHA512

      1ee2dcb97e5c9f8d281ad91e1ec793f6e7b2dadeabfa204ce1b858d7071fd196c893105a6bc1b1db4fa6a4d7dbc48d9198f30153b7ecba0f4b6e99f7579e8af9

    • SSDEEP

      6144:1LX1+7f4alGgYPqUo5LRlUivKvUmKyIxLDXXoq9FJZCUmKyIxLpmAqkCcoMOk:1LXulTYCtZoivKv32XXf9Do3+IviD

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks