General

  • Target

    2ffac6a7a8b676348aa65c8bcfc54660_NeikiAnalytics.exe

  • Size

    340KB

  • Sample

    240602-d7dkraab98

  • MD5

    2ffac6a7a8b676348aa65c8bcfc54660

  • SHA1

    02701c3f7e9a0bfc3712fa2e01ce597d5b0b2811

  • SHA256

    260f62347723feab7c831ffe9757cf44b86c275dbf9a2da8e346b0add456ccf6

  • SHA512

    e9241f445d80f9b04ee92c025aca49112fe5833fae761656caa12d1e77501a089bcdc169ad19178714c6400190364983a9aa38ff5d2c4c96849b8f7514df9c1d

  • SSDEEP

    6144:XhNGIyedZwlNPjLs+H8rtMsQBJyJyymeH:xryGZwlNPjLYRMsXJvmeH

Malware Config

Targets

    • Target

      2ffac6a7a8b676348aa65c8bcfc54660_NeikiAnalytics.exe

    • Size

      340KB

    • MD5

      2ffac6a7a8b676348aa65c8bcfc54660

    • SHA1

      02701c3f7e9a0bfc3712fa2e01ce597d5b0b2811

    • SHA256

      260f62347723feab7c831ffe9757cf44b86c275dbf9a2da8e346b0add456ccf6

    • SHA512

      e9241f445d80f9b04ee92c025aca49112fe5833fae761656caa12d1e77501a089bcdc169ad19178714c6400190364983a9aa38ff5d2c4c96849b8f7514df9c1d

    • SSDEEP

      6144:XhNGIyedZwlNPjLs+H8rtMsQBJyJyymeH:xryGZwlNPjLYRMsXJvmeH

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks