General

  • Target

    3b9dba5a837d639ba60c9899bb109c90_NeikiAnalytics.exe

  • Size

    115KB

  • Sample

    240602-fpzflsce73

  • MD5

    3b9dba5a837d639ba60c9899bb109c90

  • SHA1

    e272e36df3a73501ae3ddbafe28861302bd8c2c2

  • SHA256

    42530de823ebce5e2a77c8db9d7dd65f8f7740da9bf85aced22e39cd8cfefee9

  • SHA512

    7f7d695e5059c1a7c40d47619bc4a0968b704562428ce0123baf865cbc3b940d17c356a1e3ba652efa90d1ede4c71109bf2776f83192ef725a928c6ed6831371

  • SSDEEP

    3072:IfKTx5if7s3R1dbrIR/SoQUP5u30KqTKr4:uKTx5if7S1hrIooQUPoDqTKE

Malware Config

Targets

    • Target

      3b9dba5a837d639ba60c9899bb109c90_NeikiAnalytics.exe

    • Size

      115KB

    • MD5

      3b9dba5a837d639ba60c9899bb109c90

    • SHA1

      e272e36df3a73501ae3ddbafe28861302bd8c2c2

    • SHA256

      42530de823ebce5e2a77c8db9d7dd65f8f7740da9bf85aced22e39cd8cfefee9

    • SHA512

      7f7d695e5059c1a7c40d47619bc4a0968b704562428ce0123baf865cbc3b940d17c356a1e3ba652efa90d1ede4c71109bf2776f83192ef725a928c6ed6831371

    • SSDEEP

      3072:IfKTx5if7s3R1dbrIR/SoQUP5u30KqTKr4:uKTx5if7S1hrIooQUPoDqTKE

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks