Overview

overview

10

Static

static

10

NEAS.168a4...70.exe

windows7-x64

10

NEAS.168a4...70.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.168a486c97933bf58a16814a63bd6370.exe

  • Size

    458KB

  • MD5

    168a486c97933bf58a16814a63bd6370

  • SHA1

    d6afaefd2f26eb1f81ec161215686cdda62fb60d

  • SHA256

    2e9918b6fae2c5cd646fd1eedce2bb63145555afca5532305c19a0d50ebcc1b9

  • SHA512

    74b6a50b03fb6a77dbc5785711230ea4465a85bedd31e24047d75e965380b4f4e0d22f19e2bbe5e9243499f6221682b10adf9f5f21c7cabbc92f40886ff46889

  • SSDEEP

    12288:J4wFHoSTeR0oQRkay+eFp3IDvSbh5nPVP+OKaf1Vh:VeR0oykayRFp3lztP+OKaf1Vh

Score
10/10
upxpersistencedroppertrojanberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Backdoor - Berbew 1 IoCs

    Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    persistencedroppertrojan
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.168a486c97933bf58a16814a63bd6370.exe
    .exe windows:4 windows x86


    Headers

    Sections