General

  • Target

    35248f663f1b3707ad372f0b04a5b9a0_NeikiAnalytics.exe

  • Size

    143KB

  • Sample

    240602-ewakdsbc49

  • MD5

    35248f663f1b3707ad372f0b04a5b9a0

  • SHA1

    9b7259da9358c3fdf0793548a22b1f5fd4c332fa

  • SHA256

    98550382a5d98eed75e1ce1af6cda9b565635af3941be995ebe5e18973ed83a1

  • SHA512

    41c35af5ea78941457526dfb72fc184ea3f0a2bd0b0e5c7e3d1dab497ddc2701fcc3fd66e0f41aefaabc642d8b6becc2184fccf5c4854e5569f4f00db9be311d

  • SSDEEP

    1536:ntTW/nZcmc8759cuV9rqi4/u/cUQ5ziJE93isirBUBEVGBtVM2hZV03fca13y:ntTmXVJz4/u/c3N93bsGfhv0vt3y

Malware Config

Targets

    • Target

      35248f663f1b3707ad372f0b04a5b9a0_NeikiAnalytics.exe

    • Size

      143KB

    • MD5

      35248f663f1b3707ad372f0b04a5b9a0

    • SHA1

      9b7259da9358c3fdf0793548a22b1f5fd4c332fa

    • SHA256

      98550382a5d98eed75e1ce1af6cda9b565635af3941be995ebe5e18973ed83a1

    • SHA512

      41c35af5ea78941457526dfb72fc184ea3f0a2bd0b0e5c7e3d1dab497ddc2701fcc3fd66e0f41aefaabc642d8b6becc2184fccf5c4854e5569f4f00db9be311d

    • SSDEEP

      1536:ntTW/nZcmc8759cuV9rqi4/u/cUQ5ziJE93isirBUBEVGBtVM2hZV03fca13y:ntTmXVJz4/u/c3N93bsGfhv0vt3y

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks