Overview

overview

10

Static

static

10

NEAS.430b9...70.exe

windows7-x64

10

NEAS.430b9...70.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.430b92cb6ccd3635fd2069b7fcabf570.exe

  • Size

    161KB

  • Sample

    231111-vlgtqaaf65

  • MD5

    430b92cb6ccd3635fd2069b7fcabf570

  • SHA1

    1036bd553019de4603cc81176366053ea7b016b0

  • SHA256

    8720d242e6b516fdd77a88d079a6f04df636755ca54f85c9869998ce0fb71ced

  • SHA512

    62bb5e86ff1340ff5e5245925cb7d7739d76de2da3bb9ef2834076336208f9ccb8b81b3f1adba251383f6fd86ec6b6a9769095d9408139f3c28fa57e0a4a8234

  • SSDEEP

    3072:kmaSfsWFe9Rkan/m6+W/dF9yIEXorJik/VwtCJXeex7rrIRZK8K8/kv:k5SLokk/tpFUBqJik/VwtmeetrIyR

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.430b92cb6ccd3635fd2069b7fcabf570.exe

    • Size

      161KB

    • MD5

      430b92cb6ccd3635fd2069b7fcabf570

    • SHA1

      1036bd553019de4603cc81176366053ea7b016b0

    • SHA256

      8720d242e6b516fdd77a88d079a6f04df636755ca54f85c9869998ce0fb71ced

    • SHA512

      62bb5e86ff1340ff5e5245925cb7d7739d76de2da3bb9ef2834076336208f9ccb8b81b3f1adba251383f6fd86ec6b6a9769095d9408139f3c28fa57e0a4a8234

    • SSDEEP

      3072:kmaSfsWFe9Rkan/m6+W/dF9yIEXorJik/VwtCJXeex7rrIRZK8K8/kv:k5SLokk/tpFUBqJik/VwtmeetrIyR

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks