Overview

overview

10

Static

static

10

NEAS.0567c...90.exe

windows7-x64

10

NEAS.0567c...90.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.0567ce4184c55f74c4a48f0ffd1f2490.exe

  • Size

    374KB

  • Sample

    231101-q55bxabb78

  • MD5

    0567ce4184c55f74c4a48f0ffd1f2490

  • SHA1

    5507381caded4d12f57ad5b90a4633cea38c2060

  • SHA256

    b83c4deb787747c2f1d80ca69577dd32d8d90a7bde69f2ce74b15e4e97e154b4

  • SHA512

    f630789c5db17e2c9e54d527066eb4632574b33f8f03eb9cad60416f113d314710db223afa22c1e77f14409f1aeb2f1f9a15ff6db3d21031dd1057eea2444573

  • SSDEEP

    6144:tNdPPygLfTA6+Eu6QnFw5+0pU8oStTf3runG/qoxfIkeI1SHkF63lngMBdkw8ZFD:t/P3nE6uidyzwr6AxfLeI1Su63lgMBdQ

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.0567ce4184c55f74c4a48f0ffd1f2490.exe

    • Size

      374KB

    • MD5

      0567ce4184c55f74c4a48f0ffd1f2490

    • SHA1

      5507381caded4d12f57ad5b90a4633cea38c2060

    • SHA256

      b83c4deb787747c2f1d80ca69577dd32d8d90a7bde69f2ce74b15e4e97e154b4

    • SHA512

      f630789c5db17e2c9e54d527066eb4632574b33f8f03eb9cad60416f113d314710db223afa22c1e77f14409f1aeb2f1f9a15ff6db3d21031dd1057eea2444573

    • SSDEEP

      6144:tNdPPygLfTA6+Eu6QnFw5+0pU8oStTf3runG/qoxfIkeI1SHkF63lngMBdkw8ZFD:t/P3nE6uidyzwr6AxfLeI1Su63lgMBdQ

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks