General

  • Target

    4fca646f337c7477ea56197a5dc49d60_NeikiAnalytics.exe

  • Size

    199KB

  • Sample

    240602-h45x2sef8t

  • MD5

    4fca646f337c7477ea56197a5dc49d60

  • SHA1

    2b609c0bc73caa0a8922c40102176c1339588d1f

  • SHA256

    4c82a354a7a4fba59050f968aafaa1806a4cb6bfdc69be0efe7be052c99eb886

  • SHA512

    5159d7a04962a0d5b3d9a6b873dda11c0d986afdb47e7a4582e3026472b5ac4268239f6f671c7472eda22d89c349891498528f7fbc9f071295156c7fac7f7136

  • SSDEEP

    3072:A1knRUQ2S+wjS5DSCopsIm81+jq2832dp5Xp+7+10K03Rq/ghavVQXxFaPsRbh:XqrwjSZSCZj81+jq4peBK034YOmFz1h

Malware Config

Targets

    • Target

      4fca646f337c7477ea56197a5dc49d60_NeikiAnalytics.exe

    • Size

      199KB

    • MD5

      4fca646f337c7477ea56197a5dc49d60

    • SHA1

      2b609c0bc73caa0a8922c40102176c1339588d1f

    • SHA256

      4c82a354a7a4fba59050f968aafaa1806a4cb6bfdc69be0efe7be052c99eb886

    • SHA512

      5159d7a04962a0d5b3d9a6b873dda11c0d986afdb47e7a4582e3026472b5ac4268239f6f671c7472eda22d89c349891498528f7fbc9f071295156c7fac7f7136

    • SSDEEP

      3072:A1knRUQ2S+wjS5DSCopsIm81+jq2832dp5Xp+7+10K03Rq/ghavVQXxFaPsRbh:XqrwjSZSCZj81+jq4peBK034YOmFz1h

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks