Overview

overview

10

Static

static

10

NEAS.ba119...60.exe

windows7-x64

10

NEAS.ba119...60.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.ba119cb9ca15d8a6d66631480b355860.exe

  • Size

    198KB

  • Sample

    231021-1chybaad75

  • MD5

    ba119cb9ca15d8a6d66631480b355860

  • SHA1

    f167cc66bd79b04b6c17dd4f1de2da5b16061d00

  • SHA256

    735a9e4cafc21442922361b1079ae015649b6d425c0da1de9ecaf947e5ee4c47

  • SHA512

    3e719e00b344629162d0537d259ed6c5479c0ab934e480ef9f6acddf41ac67bd0dac7dd9b13ab4bdc8d74cb7ca91397d90b50b0e59900e23680de47927c4f36c

  • SSDEEP

    3072:2FAu0TcQo9gim4Sp+7H7wWkqrifbdB7dYk1Bx8DpsV6OzrCIwfE:oAu0IQOgimBOHhkym/89bKws

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.ba119cb9ca15d8a6d66631480b355860.exe

    • Size

      198KB

    • MD5

      ba119cb9ca15d8a6d66631480b355860

    • SHA1

      f167cc66bd79b04b6c17dd4f1de2da5b16061d00

    • SHA256

      735a9e4cafc21442922361b1079ae015649b6d425c0da1de9ecaf947e5ee4c47

    • SHA512

      3e719e00b344629162d0537d259ed6c5479c0ab934e480ef9f6acddf41ac67bd0dac7dd9b13ab4bdc8d74cb7ca91397d90b50b0e59900e23680de47927c4f36c

    • SSDEEP

      3072:2FAu0TcQo9gim4Sp+7H7wWkqrifbdB7dYk1Bx8DpsV6OzrCIwfE:oAu0IQOgimBOHhkym/89bKws

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks