Overview

overview

10

Static

static

10

NEAS.bb850...70.exe

windows7-x64

10

NEAS.bb850...70.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.bb8500e8358ea4a930aecac883447e70.exe

  • Size

    354KB

  • Sample

    231103-mlnm9sae74

  • MD5

    bb8500e8358ea4a930aecac883447e70

  • SHA1

    13a8c68795a369e6b3b212cd2ef9ad38b9c34e56

  • SHA256

    7d170c3351133805574a6f07333d3aa21d3b315f7420aa7d3d46b87ae7acba40

  • SHA512

    5fd4e37b96a94e763d60cdcb38df6069931976d86d9444afc664b7f1b8df30d3de984e57cf47b50f52b90a2bdfb7b0eb683d70416a4bcf68e01ff2a22f427533

  • SSDEEP

    6144:FDgniceuXRCqMgm9khUmKyIxLp3tTs8A9Y5CUmKyIxL6iUw:inVeuXR7Mgm9kh3kK9N36Uw

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.bb8500e8358ea4a930aecac883447e70.exe

    • Size

      354KB

    • MD5

      bb8500e8358ea4a930aecac883447e70

    • SHA1

      13a8c68795a369e6b3b212cd2ef9ad38b9c34e56

    • SHA256

      7d170c3351133805574a6f07333d3aa21d3b315f7420aa7d3d46b87ae7acba40

    • SHA512

      5fd4e37b96a94e763d60cdcb38df6069931976d86d9444afc664b7f1b8df30d3de984e57cf47b50f52b90a2bdfb7b0eb683d70416a4bcf68e01ff2a22f427533

    • SSDEEP

      6144:FDgniceuXRCqMgm9khUmKyIxLp3tTs8A9Y5CUmKyIxL6iUw:inVeuXR7Mgm9kh3kK9N36Uw

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks