General

  • Target

    3cd7bfd4c7617b7acbfaf4281b7c7cf0_NeikiAnalytics.exe

  • Size

    229KB

  • Sample

    240604-h45bhshg36

  • MD5

    3cd7bfd4c7617b7acbfaf4281b7c7cf0

  • SHA1

    a63b8847207a9b0443052bb11c2bbf099f935259

  • SHA256

    9a189d8a8e8cf92da8de27b76a14f084cf7391cda736783ab878c72f9c5463d0

  • SHA512

    6fd94117514fd2f437c772cca37d1e973eb22790cc6e107f6f07e81772ea8b59ece7a7a5e75832ec1601f0c510e5e231c26bd405af039387afe4eba5f1ce2ad0

  • SSDEEP

    3072:EvB2s6NxwFSTfH27jxEZHR3/pvkqrifbdB7dYk1Bx8DpsV6YZOwVTNhCKdVN0v/:ET6PP271+HZ/pvkym/89bYEwPhCKvav

Malware Config

Targets

    • Target

      3cd7bfd4c7617b7acbfaf4281b7c7cf0_NeikiAnalytics.exe

    • Size

      229KB

    • MD5

      3cd7bfd4c7617b7acbfaf4281b7c7cf0

    • SHA1

      a63b8847207a9b0443052bb11c2bbf099f935259

    • SHA256

      9a189d8a8e8cf92da8de27b76a14f084cf7391cda736783ab878c72f9c5463d0

    • SHA512

      6fd94117514fd2f437c772cca37d1e973eb22790cc6e107f6f07e81772ea8b59ece7a7a5e75832ec1601f0c510e5e231c26bd405af039387afe4eba5f1ce2ad0

    • SSDEEP

      3072:EvB2s6NxwFSTfH27jxEZHR3/pvkqrifbdB7dYk1Bx8DpsV6YZOwVTNhCKdVN0v/:ET6PP271+HZ/pvkym/89bYEwPhCKvav

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks