General

  • Target

    342872c7a7e45650c3f94380fb9dd4d0_NeikiAnalytics.exe

  • Size

    768KB

  • Sample

    240602-eqmb1aae3w

  • MD5

    342872c7a7e45650c3f94380fb9dd4d0

  • SHA1

    44b40e41da33ab2aa8ccbeaa8a0443708ae01562

  • SHA256

    ed17dbedcec79e7074d6b23f1ee76a59e83af4654755fc37bc4ab41f955de091

  • SHA512

    7d6df514703694077b18eed7a845484f685dcc6415b1683f911482b9a89a63421bc7b175f5910a38a18a3e37802857f889ea64504e00735b82d26e73c9249c0f

  • SSDEEP

    12288:hPcvsM6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGZ+C8lM1:JMtaSHFaZRBEYyqmaf2qwiHPKgRC4gvO

Malware Config

Targets

    • Target

      342872c7a7e45650c3f94380fb9dd4d0_NeikiAnalytics.exe

    • Size

      768KB

    • MD5

      342872c7a7e45650c3f94380fb9dd4d0

    • SHA1

      44b40e41da33ab2aa8ccbeaa8a0443708ae01562

    • SHA256

      ed17dbedcec79e7074d6b23f1ee76a59e83af4654755fc37bc4ab41f955de091

    • SHA512

      7d6df514703694077b18eed7a845484f685dcc6415b1683f911482b9a89a63421bc7b175f5910a38a18a3e37802857f889ea64504e00735b82d26e73c9249c0f

    • SSDEEP

      12288:hPcvsM6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGZ+C8lM1:JMtaSHFaZRBEYyqmaf2qwiHPKgRC4gvO

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks