General

  • Target

    381458f66aa1417017f208fafe80ea60_NeikiAnalytics.exe

  • Size

    367KB

  • Sample

    240602-e9vsgsbc41

  • MD5

    381458f66aa1417017f208fafe80ea60

  • SHA1

    c21627edc890e92f3e28d3a2b966b56729c8c73f

  • SHA256

    195014d5ef9ba5ff60153455d5c0e4b10501baa6b11b3a36cccdba742b026a7a

  • SHA512

    76b267ed6c78d6c25356d0b5e3127c74de98a35e4e7b80720e509358bfa97116eaa415c5bcccf87739988321711f5db2e601464dfa790736f2f73bb99500e26a

  • SSDEEP

    6144:nyt0669tnJfKXqPTX7D7FM6234lKm3mo8Yvi4KsLTFM6234lKm3cM9:ytatJCXqP77D7FB24lwR45FB24lqM

Malware Config

Targets

    • Target

      381458f66aa1417017f208fafe80ea60_NeikiAnalytics.exe

    • Size

      367KB

    • MD5

      381458f66aa1417017f208fafe80ea60

    • SHA1

      c21627edc890e92f3e28d3a2b966b56729c8c73f

    • SHA256

      195014d5ef9ba5ff60153455d5c0e4b10501baa6b11b3a36cccdba742b026a7a

    • SHA512

      76b267ed6c78d6c25356d0b5e3127c74de98a35e4e7b80720e509358bfa97116eaa415c5bcccf87739988321711f5db2e601464dfa790736f2f73bb99500e26a

    • SSDEEP

      6144:nyt0669tnJfKXqPTX7D7FM6234lKm3mo8Yvi4KsLTFM6234lKm3cM9:ytatJCXqP77D7FB24lwR45FB24lqM

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks