Overview

overview

10

Static

static

10

NEAS.dae1c...20.exe

windows7-x64

10

NEAS.dae1c...20.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.dae1ca6aced64c15f68035ec1b2fe420.exe

  • Size

    85KB

  • Sample

    231101-ch8h6aba36

  • MD5

    dae1ca6aced64c15f68035ec1b2fe420

  • SHA1

    29f44ba91f2c66fb661da41f0042647dbcc711b9

  • SHA256

    f010ea2d21c6aab662435b9c6e77cfe4335d9569e64469b83e10c85000e76bdd

  • SHA512

    8decb4a6ec28cf0a5866470a59b1f4ad563fcf057ee39b28eeb5490ea86a7d2b97473d755a1981165fde383291e31599758c7cee122a6fd89fc8061afac351ae

  • SSDEEP

    1536:1pCF3Tr3i9bAkb2GU/yrLH64/G5gMxXJ6tHI2LHDMQ262AjCsQ2PCZZrqOlNfVSc:1pCxTji9bAk3U/yrLH6gMJJ6HZHDMQHI

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.dae1ca6aced64c15f68035ec1b2fe420.exe

    • Size

      85KB

    • MD5

      dae1ca6aced64c15f68035ec1b2fe420

    • SHA1

      29f44ba91f2c66fb661da41f0042647dbcc711b9

    • SHA256

      f010ea2d21c6aab662435b9c6e77cfe4335d9569e64469b83e10c85000e76bdd

    • SHA512

      8decb4a6ec28cf0a5866470a59b1f4ad563fcf057ee39b28eeb5490ea86a7d2b97473d755a1981165fde383291e31599758c7cee122a6fd89fc8061afac351ae

    • SSDEEP

      1536:1pCF3Tr3i9bAkb2GU/yrLH64/G5gMxXJ6tHI2LHDMQ262AjCsQ2PCZZrqOlNfVSc:1pCxTji9bAk3U/yrLH6gMJJ6HZHDMQHI

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks