General

  • Target

    2aefd32624b7736e7553c16b3359f960_NeikiAnalytics.exe

  • Size

    768KB

  • Sample

    240602-dl218ahd36

  • MD5

    2aefd32624b7736e7553c16b3359f960

  • SHA1

    88549178cb0f8f1cfd95e8e8ca1cb0f2fe7e49e4

  • SHA256

    3a01b59c489f858a5f7d965b7e95317ba741e994c4e1313582e418b94ec5f893

  • SHA512

    be2256f08f97501325b2a8f5accf810c20cd0eaa66926f2dc153e4171509d1d6e8d9f56a34dab5310ff6c0f07e3d1a09187c4afc48025779fee8490249ebb94e

  • SSDEEP

    12288:wU7XfvS6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4g2:r7Xyq5h3q5htaSHFaZRBEYyqmaf2qwiv

Malware Config

Targets

    • Target

      2aefd32624b7736e7553c16b3359f960_NeikiAnalytics.exe

    • Size

      768KB

    • MD5

      2aefd32624b7736e7553c16b3359f960

    • SHA1

      88549178cb0f8f1cfd95e8e8ca1cb0f2fe7e49e4

    • SHA256

      3a01b59c489f858a5f7d965b7e95317ba741e994c4e1313582e418b94ec5f893

    • SHA512

      be2256f08f97501325b2a8f5accf810c20cd0eaa66926f2dc153e4171509d1d6e8d9f56a34dab5310ff6c0f07e3d1a09187c4afc48025779fee8490249ebb94e

    • SSDEEP

      12288:wU7XfvS6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4g2:r7Xyq5h3q5htaSHFaZRBEYyqmaf2qwiv

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks