General

  • Target

    NEAS.153c677c4382bdc4ab93fb86c212d210.exe

  • Size

    374KB

  • Sample

    231102-t2ztsshc79

  • MD5

    153c677c4382bdc4ab93fb86c212d210

  • SHA1

    5a2d74c1f87745c4b84f73bba17a96331ebf7b65

  • SHA256

    4e5e61abac993bd2032eeabfc69376f3f0dd27c8bfd54bc5f9cece6d4fc8379a

  • SHA512

    314728647c55c6a78fa8478a372801683bd17a8998d81f29f5599a05a4daf5e30c7c575e185a8c2a022784e213b809319cd5f0275f415126e84c0291ec2ecb7f

  • SSDEEP

    6144:yz9AFhuN+Eu6QnFw5+0pU8oStTf3runG/qoxfIkeI1SHkF63lngMBdkw8ZF+Y:ymOE6uidyzwr6AxfLeI1Su63lgMBdIZd

Malware Config

Targets

    • Target

      NEAS.153c677c4382bdc4ab93fb86c212d210.exe

    • Size

      374KB

    • MD5

      153c677c4382bdc4ab93fb86c212d210

    • SHA1

      5a2d74c1f87745c4b84f73bba17a96331ebf7b65

    • SHA256

      4e5e61abac993bd2032eeabfc69376f3f0dd27c8bfd54bc5f9cece6d4fc8379a

    • SHA512

      314728647c55c6a78fa8478a372801683bd17a8998d81f29f5599a05a4daf5e30c7c575e185a8c2a022784e213b809319cd5f0275f415126e84c0291ec2ecb7f

    • SSDEEP

      6144:yz9AFhuN+Eu6QnFw5+0pU8oStTf3runG/qoxfIkeI1SHkF63lngMBdkw8ZF+Y:ymOE6uidyzwr6AxfLeI1Su63lgMBdIZd

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks