berbew | 68bb2144b5a107bc159bb78a75647a929ef60fd9c3f646fd3eaf6477f016e9ec

General

Target

NEAS.684bb9a36fc5604f3c0543ede8220f90.exe
Size

182KB
Sample

231022-vwx9fsea3z
MD5

684bb9a36fc5604f3c0543ede8220f90
SHA1

77edef216d162b3ed07b54154a605bfd3a58bed1
SHA256

68bb2144b5a107bc159bb78a75647a929ef60fd9c3f646fd3eaf6477f016e9ec
SHA512

df2c16309d1f21cf418a73fdd1b8ef6279819994b2cf5187c3d861c6b10efd926df35eab7f2e80566567431a2215ad59f3db814ce14fd760b5acabea01532255
SSDEEP

1536:heT7BVwxfvEFwjRs1PDXFi0VvBYv3kZtAV7ZBbP1yVGqV6zSVSGzsNEE:hmVwRKCULFlav+m7ZB5e3V6z1GzCh

Score

10^/10

Malware Config

Targets

- Target
  
  NEAS.684bb9a36fc5604f3c0543ede8220f90.exe
- Size
  
  182KB
- MD5
  
  684bb9a36fc5604f3c0543ede8220f90
- SHA1
  
  77edef216d162b3ed07b54154a605bfd3a58bed1
- SHA256
  
  68bb2144b5a107bc159bb78a75647a929ef60fd9c3f646fd3eaf6477f016e9ec
- SHA512
  
  df2c16309d1f21cf418a73fdd1b8ef6279819994b2cf5187c3d861c6b10efd926df35eab7f2e80566567431a2215ad59f3db814ce14fd760b5acabea01532255
- SSDEEP
  
  1536:heT7BVwxfvEFwjRs1PDXFi0VvBYv3kZtAV7ZBbP1yVGqV6zSVSGzsNEE:hmVwRKCULFlav+m7ZB5e3V6z1GzCh
Score

10^/10

dropper evasion persistence trojan upx
- Malware Backdoor - Berbew
  Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.
  persistence dropper trojan
- Modifies visibility of file extensions in Explorer
  evasion
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

1

T1564

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Information Discovery

1

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Malware Backdoor - Berbew

Modifies visibility of file extensions in Explorer

Executes dropped EXE

Loads dropped DLL

UPX packed file

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2