General

  • Target

    3e19b04f1be12e63e7ab438b59c931f0_NeikiAnalytics.exe

  • Size

    1.2MB

  • Sample

    240602-f1mk7acc7w

  • MD5

    3e19b04f1be12e63e7ab438b59c931f0

  • SHA1

    81d0f94efafa144e8c303ce6bd6b56c92acbbec4

  • SHA256

    77a10cd36b39a97838597a52f57dc2ab8f4cf2005d7bf898d9c259887e59cfa5

  • SHA512

    1f1f852e7ec58058401ad19b6a395082bd8a36d0abc409aaa3b4a71bc997a47edb47311cf4bb00684068a0a47ccf9aedfd2fadeb51f62ce057e95721c712e122

  • SSDEEP

    12288:KVlQHFv/AF50+OJ3BHCXwpnsKvNA+XTvZHWuEo3oW2to:KCFXe50+YNpsKv2EvZHp3oW2to

Malware Config

Targets

    • Target

      3e19b04f1be12e63e7ab438b59c931f0_NeikiAnalytics.exe

    • Size

      1.2MB

    • MD5

      3e19b04f1be12e63e7ab438b59c931f0

    • SHA1

      81d0f94efafa144e8c303ce6bd6b56c92acbbec4

    • SHA256

      77a10cd36b39a97838597a52f57dc2ab8f4cf2005d7bf898d9c259887e59cfa5

    • SHA512

      1f1f852e7ec58058401ad19b6a395082bd8a36d0abc409aaa3b4a71bc997a47edb47311cf4bb00684068a0a47ccf9aedfd2fadeb51f62ce057e95721c712e122

    • SSDEEP

      12288:KVlQHFv/AF50+OJ3BHCXwpnsKvNA+XTvZHWuEo3oW2to:KCFXe50+YNpsKv2EvZHp3oW2to

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks