General

  • Target

    2b4f3ba9a3fae8a5f5d4512bcabb8f20_NeikiAnalytics.exe

  • Size

    669KB

  • Sample

    240602-dnc5wagh3x

  • MD5

    2b4f3ba9a3fae8a5f5d4512bcabb8f20

  • SHA1

    1a0b726f5588e9196683457833fa37ac607cc189

  • SHA256

    a2a2dc6a7b0a29cf4f91492c45042c2fba71aa57b79f533abca248d2c2154014

  • SHA512

    f6582fc899469932c8950e40007f6b9421d2428d972cbda21108224fa1e4627eeffc21df1dbaa707566877523b7fa14603ee244354ca3d66b9599af3b45859e3

  • SSDEEP

    12288:lK7AeVKhMpQnqr+cI3a72LXrY6x46UbR/qYglMi:i7chMpQnqrdX72LbY6x46uR/qYglMi

Malware Config

Targets

    • Target

      2b4f3ba9a3fae8a5f5d4512bcabb8f20_NeikiAnalytics.exe

    • Size

      669KB

    • MD5

      2b4f3ba9a3fae8a5f5d4512bcabb8f20

    • SHA1

      1a0b726f5588e9196683457833fa37ac607cc189

    • SHA256

      a2a2dc6a7b0a29cf4f91492c45042c2fba71aa57b79f533abca248d2c2154014

    • SHA512

      f6582fc899469932c8950e40007f6b9421d2428d972cbda21108224fa1e4627eeffc21df1dbaa707566877523b7fa14603ee244354ca3d66b9599af3b45859e3

    • SSDEEP

      12288:lK7AeVKhMpQnqr+cI3a72LXrY6x46UbR/qYglMi:i7chMpQnqrdX72LbY6x46uR/qYglMi

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks