Overview

overview

10

Static

static

10

NEAS.53e02...40.exe

windows7-x64

10

NEAS.53e02...40.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.53e02cc00db6f3010e893ee11473cb40.exe

  • Size

    196KB

  • Sample

    231102-rkgksafa33

  • MD5

    53e02cc00db6f3010e893ee11473cb40

  • SHA1

    73560a77d26ba932929dd280fe8ede8781e54268

  • SHA256

    a5c6bf2f4d12cef15fdd58d4367cbfffe34472b0f0de14c9d387df7cbd2c104e

  • SHA512

    a8e44b4b7f6aedacb44895c415ead8869ecf5306cdeb9887765c57ea56dfa6a9743d1b25c1157f7b134fcc4f93a950c6da5c07ec2b7654c2a5817d0625babd72

  • SSDEEP

    6144:X5C/4C6P9WvOvBTsa81+jq4peBK02SjSM0zI6rH:X5aKPqiTs1+jheBwSv0E6rH

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.53e02cc00db6f3010e893ee11473cb40.exe

    • Size

      196KB

    • MD5

      53e02cc00db6f3010e893ee11473cb40

    • SHA1

      73560a77d26ba932929dd280fe8ede8781e54268

    • SHA256

      a5c6bf2f4d12cef15fdd58d4367cbfffe34472b0f0de14c9d387df7cbd2c104e

    • SHA512

      a8e44b4b7f6aedacb44895c415ead8869ecf5306cdeb9887765c57ea56dfa6a9743d1b25c1157f7b134fcc4f93a950c6da5c07ec2b7654c2a5817d0625babd72

    • SSDEEP

      6144:X5C/4C6P9WvOvBTsa81+jq4peBK02SjSM0zI6rH:X5aKPqiTs1+jheBwSv0E6rH

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks