General

  • Target

    NEAS.374e11edce5d075781d5028586d907b0.exe

  • Size

    833KB

  • Sample

    231022-vtzdqscf51

  • MD5

    374e11edce5d075781d5028586d907b0

  • SHA1

    32d85832cbd3f17c69150d9a26adaa8c7ec23880

  • SHA256

    55104be07832fbf9b522ef29fff2e11562afa52e8cf045dda8728ff747eb4620

  • SHA512

    9c35e4eb76f06fedf21dcd53a372c53af81ab5625865904ced8bcbedb7ba7dedc77a039b3863cf1455e603fc60a972ff4db815d6fe5b58e923aec87090ee22fd

  • SSDEEP

    24576:IZdXHfNIVyeNIVy2jU13fS2hEYM9RIPqcNaAarJWw6j0dFZg0ZktGlIOfSJbuIsg:IZdXeyjC3a2hEY2RIPqcNaAarJWwq0d6

Malware Config

Targets

    • Target

      NEAS.374e11edce5d075781d5028586d907b0.exe

    • Size

      833KB

    • MD5

      374e11edce5d075781d5028586d907b0

    • SHA1

      32d85832cbd3f17c69150d9a26adaa8c7ec23880

    • SHA256

      55104be07832fbf9b522ef29fff2e11562afa52e8cf045dda8728ff747eb4620

    • SHA512

      9c35e4eb76f06fedf21dcd53a372c53af81ab5625865904ced8bcbedb7ba7dedc77a039b3863cf1455e603fc60a972ff4db815d6fe5b58e923aec87090ee22fd

    • SSDEEP

      24576:IZdXHfNIVyeNIVy2jU13fS2hEYM9RIPqcNaAarJWw6j0dFZg0ZktGlIOfSJbuIsg:IZdXeyjC3a2hEY2RIPqcNaAarJWwq0d6

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks