Overview

overview

10

Static

static

10

NEAS.ec49a...d0.exe

windows7-x64

10

NEAS.ec49a...d0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.ec49a9f690d95b3106313a58b47673d0.exe

  • Size

    139KB

  • MD5

    ec49a9f690d95b3106313a58b47673d0

  • SHA1

    ed6b172149ed11f0692ae650b2f639d84dc3f74b

  • SHA256

    95bfe9f402142829476ea1016277d0c2d7b0cb2ad2516c67b478ff0e6cef91f8

  • SHA512

    d9272e5479558f4ce1f3bac7885bb9b813263d3e6ffdd0fe06dc4f63b73f50059b1e21ba9f2e024967603a89997d53c344ba1e935fc5c81db2c20558c85a1999

  • SSDEEP

    3072:EhOmTsF93UYfwC6GIoutcEDjmDH6lPqZD2N/67ZWRZWZ1AgkniEiku:Ecm4FmowdHoScQmL6l6O/8WOWiEiku

Score
10/10
upxpersistencedroppertrojanberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Backdoor - Berbew 1 IoCs

    Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    persistencedroppertrojan
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.ec49a9f690d95b3106313a58b47673d0.exe
    .exe windows:4 windows x86


    Headers

    Sections