Overview

overview

10

Static

static

10

NEAS.0f615...80.exe

windows7-x64

10

NEAS.0f615...80.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.0f61547ce8c239f3fa464f20d28e5480.exe

  • Size

    460KB

  • MD5

    0f61547ce8c239f3fa464f20d28e5480

  • SHA1

    dbdedace8f91ccbc8a80e1f039682ebb0cd49014

  • SHA256

    167b8f9ee1a484bab664f384065fe634b3e84aa373f9aade34686646ed4777c5

  • SHA512

    e9ff83b55a6e97d3ff2a9f63e06efeb942e886d804ccbb414f15e136c798dd8e7e2b097e70d666858ac727bef5a4a7443e92996388a47868e12ff0e0af21b7d1

  • SSDEEP

    12288:J4wFHoSTeR0oQRkay+eFp3IDvSbh5nPVP+OKaf1Vw:VeR0oykayRFp3lztP+OKaf1Vw

Score
10/10
upxpersistencedroppertrojanberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Backdoor - Berbew 1 IoCs

    Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    persistencedroppertrojan
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.0f61547ce8c239f3fa464f20d28e5480.exe
    .exe windows:4 windows x86


    Headers

    Sections