General

  • Target

    NEAS.d95491ad4fea2a70019a34ff1e181f40.exe

  • Size

    245KB

  • MD5

    d95491ad4fea2a70019a34ff1e181f40

  • SHA1

    bb4ee584b1462b96c83226a825043b09fa1d77e6

  • SHA256

    665da3da3f21674a50c1b7c1437050e11b7f3987f35f02eefb6f7cf9632dfaa2

  • SHA512

    4f40f00935485fe0ffaeb6de0b688e3f1c58355900f7cb4581014175f67348a6af1b0c40487541590091ef9115ba0a1b4c36611144fa2dca1f72b9009b39f9db

  • SSDEEP

    3072:chOmTsF93UYfwC6GIoutieyhC2lbgGi5yLpcgDE4JBuItR8pTsgZ9WT4iaz+LW:ccm4FmowdHoSi9EIBftapTs4WZaziW

Malware Config

Signatures

  • Berbew family
  • Malware Backdoor - Berbew 1 IoCs

    Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.d95491ad4fea2a70019a34ff1e181f40.exe
    .exe windows:4 windows x86


    Headers

    Sections