Overview

overview

10

Static

static

10

NEAS.d8050...20.exe

windows7-x64

10

NEAS.d8050...20.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.d8050574a2e4c68b741987910e701e20.exe

  • Size

    514KB

  • MD5

    d8050574a2e4c68b741987910e701e20

  • SHA1

    f7bbb848f264183ae309359f11f8ae7338ab42a5

  • SHA256

    35cb0986bf25c374ad57305c9556497afbbef7b2275eb8451f64eae1e1c09cd3

  • SHA512

    b1b1083a998a7d4f16d53657bf0d02dee58d970bd3a9cd428dda1767b0d864b719aa705967827ea24af74509dc3ac4446fe4a5e606d3d9dd32c0d65be96309a7

  • SSDEEP

    12288:N4wFHoSMu49P9mPh2kkkkK4kXkkkkkkkkl888888888888888888nl:Cu49lmPh2kkkkK4kXkkkkkkkkL

Score
10/10
upxpersistencedroppertrojanberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Backdoor - Berbew 1 IoCs

    Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    persistencedroppertrojan
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.d8050574a2e4c68b741987910e701e20.exe
    .exe windows:4 windows x86


    Headers

    Sections