General

  • Target

    348cbc8ce193172410dea5ab32cfc740_NeikiAnalytics.exe

  • Size

    448KB

  • Sample

    240602-esqr7sae8v

  • MD5

    348cbc8ce193172410dea5ab32cfc740

  • SHA1

    d83ab67b3b7ffa65d6ad5ec24ac326f7d41bedb9

  • SHA256

    458e5f977d1b121610ee559f69ddd241c61c05bca3bfbc10442f849441796d4a

  • SHA512

    5bc73391b3f972098f2c89c190f954c440c4028e5407fc21b8deb795504671120d232b9ad1694f550dad6e0e49b8c6f3172c00a6b73d4a31f817518e1d4d61f9

  • SSDEEP

    12288:m988m5pV6yYPMLnfBJKFbhDwBpV6yYP6Utri+Woh3YRVDDf1LcXD3v+2JFrfzj:4Lm5WMLnfBJKhVwBW6Utri+WoxYRVDrs

Malware Config

Targets

    • Target

      348cbc8ce193172410dea5ab32cfc740_NeikiAnalytics.exe

    • Size

      448KB

    • MD5

      348cbc8ce193172410dea5ab32cfc740

    • SHA1

      d83ab67b3b7ffa65d6ad5ec24ac326f7d41bedb9

    • SHA256

      458e5f977d1b121610ee559f69ddd241c61c05bca3bfbc10442f849441796d4a

    • SHA512

      5bc73391b3f972098f2c89c190f954c440c4028e5407fc21b8deb795504671120d232b9ad1694f550dad6e0e49b8c6f3172c00a6b73d4a31f817518e1d4d61f9

    • SSDEEP

      12288:m988m5pV6yYPMLnfBJKFbhDwBpV6yYP6Utri+Woh3YRVDDf1LcXD3v+2JFrfzj:4Lm5WMLnfBJKhVwBW6Utri+WoxYRVDrs

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks