General

  • Target

    41bb45989179573219ac300a980b31e0_NeikiAnalytics.exe

  • Size

    1000KB

  • Sample

    240602-gdxcjscg5y

  • MD5

    41bb45989179573219ac300a980b31e0

  • SHA1

    01087ddd3352454c27363eacc0d073d46197227f

  • SHA256

    61300471b1ca99194737c919312a9f7a2a8c2b1967a3e077d1f772f592516cbd

  • SHA512

    fa0ca86536195e3ed05ed9d371c75979bd49372447f5d8aa7df200ab0779630f31571f867ce44133f9aebfdeb0fa29b4884603c8464f177bc83dc146b07923a9

  • SSDEEP

    12288:IRd246tHBFLPj3TmLnWrOxNuxC97hFq9o7:V46tHBFLPj368MoC9Dq9o7

Malware Config

Targets

    • Target

      41bb45989179573219ac300a980b31e0_NeikiAnalytics.exe

    • Size

      1000KB

    • MD5

      41bb45989179573219ac300a980b31e0

    • SHA1

      01087ddd3352454c27363eacc0d073d46197227f

    • SHA256

      61300471b1ca99194737c919312a9f7a2a8c2b1967a3e077d1f772f592516cbd

    • SHA512

      fa0ca86536195e3ed05ed9d371c75979bd49372447f5d8aa7df200ab0779630f31571f867ce44133f9aebfdeb0fa29b4884603c8464f177bc83dc146b07923a9

    • SSDEEP

      12288:IRd246tHBFLPj3TmLnWrOxNuxC97hFq9o7:V46tHBFLPj368MoC9Dq9o7

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks