General

  • Target

    38fe15b75ea7abc3575fb763ab610a40_NeikiAnalytics.exe

  • Size

    282KB

  • Sample

    240602-fdmmnsca75

  • MD5

    38fe15b75ea7abc3575fb763ab610a40

  • SHA1

    acf6f7647b241779d2c4c958f1a9c889fb05331a

  • SHA256

    153ace730e381a1fc8d7de47a0191fdd1d381c13137ab5f81c7447707470d01f

  • SHA512

    2d1059b7b748b3893268482269ca6ea36b9b88cb4172a48ac74820b4b8211130820f9ae9ae5283ad99a3b6d7b6ed846bad632946dfa00aee3e36a29a07bdd68e

  • SSDEEP

    6144:UVpL5AZA9Lu9WgPc4p/4mmkEjiPISUOgW9X+hOGzC/:Ch5AZA9Lu9sq4mmkmZzcukG2/

Malware Config

Targets

    • Target

      38fe15b75ea7abc3575fb763ab610a40_NeikiAnalytics.exe

    • Size

      282KB

    • MD5

      38fe15b75ea7abc3575fb763ab610a40

    • SHA1

      acf6f7647b241779d2c4c958f1a9c889fb05331a

    • SHA256

      153ace730e381a1fc8d7de47a0191fdd1d381c13137ab5f81c7447707470d01f

    • SHA512

      2d1059b7b748b3893268482269ca6ea36b9b88cb4172a48ac74820b4b8211130820f9ae9ae5283ad99a3b6d7b6ed846bad632946dfa00aee3e36a29a07bdd68e

    • SSDEEP

      6144:UVpL5AZA9Lu9WgPc4p/4mmkEjiPISUOgW9X+hOGzC/:Ch5AZA9Lu9sq4mmkmZzcukG2/

    Score
    10/10
    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks