General

  • Target

    NEAS.d42336a696022824a2a0d0edccf707a0.exe

  • Size

    89KB

  • Sample

    231111-gbc6wsbf7w

  • MD5

    d42336a696022824a2a0d0edccf707a0

  • SHA1

    084f5e5171c2755755ed76db03efad65d6c7db39

  • SHA256

    28ba83e46f1033445c87396107800583f8f63baefa75d661fca22ba915c00edb

  • SHA512

    1698aef78cdb7fa2261fe1886a4b5d0b28c00a0b1e603951b3ad422a04aa92e0b43f9474112df516692c05b30cc7ec67d13c263cb5b5ae0c33d50489bd0ba219

  • SSDEEP

    1536:uC2ynUEbish2Nzp3NgXmriSIzSeAfZwmFV9lZRQTD68a+VMKKTRVGFtUhQfR1WRw:j6cEpdgWWSQzAfOuHeSr4MKy3G7UEqMR

Malware Config

Targets

    • Target

      NEAS.d42336a696022824a2a0d0edccf707a0.exe

    • Size

      89KB

    • MD5

      d42336a696022824a2a0d0edccf707a0

    • SHA1

      084f5e5171c2755755ed76db03efad65d6c7db39

    • SHA256

      28ba83e46f1033445c87396107800583f8f63baefa75d661fca22ba915c00edb

    • SHA512

      1698aef78cdb7fa2261fe1886a4b5d0b28c00a0b1e603951b3ad422a04aa92e0b43f9474112df516692c05b30cc7ec67d13c263cb5b5ae0c33d50489bd0ba219

    • SSDEEP

      1536:uC2ynUEbish2Nzp3NgXmriSIzSeAfZwmFV9lZRQTD68a+VMKKTRVGFtUhQfR1WRw:j6cEpdgWWSQzAfOuHeSr4MKy3G7UEqMR

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks