Extracted

• • Target

    NEAS.a0d22cc6bed7cf3f7d492071264201a0.exe

  • Size

    237KB

  • MD5

    a0d22cc6bed7cf3f7d492071264201a0

  • SHA1

    989bf15c2d6569e78e6e4cb831bf31927c64384c

  • SHA256

    4f753e33cfb1e489b24771ae5e0976043cb25fbd2b38c119387195e1c87e07f8

  • SHA512

    f32430dbb7169baa8342bf700206c1ea5155bb12b0d6109a947cb51b2a7d0277663a33acc83b08251ce1c0591b6373657b6653c750b30acfa770e85d14b5718b

  • SSDEEP

    1536:9RsvcdCQjosnvnjs6SQ1EVrPdDG/PEzxVJsPcbYDOYrmwd8eCwe5cJ41:LsKjRvnhSGYB0EzXJsPcEDOHDzF551

  Score

  10^/10

  dropperpersistencetrojan

  • Malware Backdoor - Berbew

    Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    persistencedroppertrojan

  • Checks computer location settings

    Looks up country code configured in the registry, likely geofence.

  • Executes dropped EXE

  • Loads dropped DLL

  behavioral1behavioral2