Overview

overview

10

Static

static

10

NEAS.06a71...JC.exe

windows7-x64

10

NEAS.06a71...JC.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.06a71c950f250b053b59fdf7e5f78730_JC.exe

  • Size

    67KB

  • Sample

    231103-fdn6haeb86

  • MD5

    06a71c950f250b053b59fdf7e5f78730

  • SHA1

    e5a721a72cb61f134adc66967dc7fd3acfcfbc2b

  • SHA256

    2e9c4b1775f0f013f1b2ecb4fa548cb6d68e366a717560f22689e8635620401f

  • SHA512

    e117dcc558f2cd02e82a6e5eda8e326b3c45beb400052f5b5c3f1f251e5efcb22e570b41610afda2b43203a90b88f5dfa388e9151a08075cd8f3e433a6c23d7b

  • SSDEEP

    1536:EoTX9KavEZWw+1GaGnY5g3U1OxoRxL/eOFWuTPHN4siosJifTduD4oTxw:tTXAJZWw+waGnog3U1OxoRxLPWuTlXlr

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.06a71c950f250b053b59fdf7e5f78730_JC.exe

    • Size

      67KB

    • MD5

      06a71c950f250b053b59fdf7e5f78730

    • SHA1

      e5a721a72cb61f134adc66967dc7fd3acfcfbc2b

    • SHA256

      2e9c4b1775f0f013f1b2ecb4fa548cb6d68e366a717560f22689e8635620401f

    • SHA512

      e117dcc558f2cd02e82a6e5eda8e326b3c45beb400052f5b5c3f1f251e5efcb22e570b41610afda2b43203a90b88f5dfa388e9151a08075cd8f3e433a6c23d7b

    • SSDEEP

      1536:EoTX9KavEZWw+1GaGnY5g3U1OxoRxL/eOFWuTPHN4siosJifTduD4oTxw:tTXAJZWw+waGnog3U1OxoRxLPWuTlXlr

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks