Overview

overview

10

Static

static

10

NEAS.5f168...a0.exe

windows7-x64

10

NEAS.5f168...a0.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.5f168eeab280aa4662852c153f7300a0.exe

  • Size

    117KB

  • MD5

    5f168eeab280aa4662852c153f7300a0

  • SHA1

    1103516b5e119398c33a6d68a64487998dfe3b1f

  • SHA256

    0d859fd17e87c619b57c3f1fe11dbfabbefeff15a09535dba9570811212d3254

  • SHA512

    ca88b0921014103c59da49c8a3296cc18f8b8ac7b91acddc37a0706bfac6c78ff3895b4356142d37d315380ff8d86bd73254c37288ce26963776c7903468f001

  • SSDEEP

    3072:mhOmTsF93UYfwC6GIout1IOnX3oDSSLwRYcvrqrE66kry:mcm4FmowdHoS1IOnHoDTmhraH2

Score
10/10
upxpersistencedroppertrojanberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Backdoor - Berbew 1 IoCs

    Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    persistencedroppertrojan
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.5f168eeab280aa4662852c153f7300a0.exe
    .exe windows:4 windows x86


    Headers

    Sections