General

  • Target

    39c8e89948dcc528dbf1a057c1e28d90_NeikiAnalytics.exe

  • Size

    161KB

  • Sample

    240602-fflhdsbe81

  • MD5

    39c8e89948dcc528dbf1a057c1e28d90

  • SHA1

    23405492d3eb438f48b571876da770650a04c7dd

  • SHA256

    5c8fdea9100097260ddc45e8ad819c93f1df05fe62a5177db2e3e3361133a4d5

  • SHA512

    073be799da45465a0a7a108645955c66a89b59781c2b245bd06602b1f57e8aec03281a536f14febce51c6d1193f9f1e79cbdcbe829bf453c581b64695dd8e37e

  • SSDEEP

    3072:3pwAqjZ76f0qHRTF3ngk8VwtCJXeex7rrIRZK8K8/kvV:3pkZ76f0qxxgk8VwtmeetrIyRV

Malware Config

Targets

    • Target

      39c8e89948dcc528dbf1a057c1e28d90_NeikiAnalytics.exe

    • Size

      161KB

    • MD5

      39c8e89948dcc528dbf1a057c1e28d90

    • SHA1

      23405492d3eb438f48b571876da770650a04c7dd

    • SHA256

      5c8fdea9100097260ddc45e8ad819c93f1df05fe62a5177db2e3e3361133a4d5

    • SHA512

      073be799da45465a0a7a108645955c66a89b59781c2b245bd06602b1f57e8aec03281a536f14febce51c6d1193f9f1e79cbdcbe829bf453c581b64695dd8e37e

    • SSDEEP

      3072:3pwAqjZ76f0qHRTF3ngk8VwtCJXeex7rrIRZK8K8/kvV:3pkZ76f0qxxgk8VwtmeetrIyRV

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks