Overview

overview

10

Static

static

10

NEAS.fea88...3d.exe

windows7-x64

10

NEAS.fea88...3d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.fea88f47d673af74899d235b81b9383d.exe

  • Size

    109KB

  • Sample

    231112-xbe89aae3v

  • MD5

    fea88f47d673af74899d235b81b9383d

  • SHA1

    9342d561be3082709781691f4dcaf28be6b4792a

  • SHA256

    816aa5beba633e9659ad1e5eb4cefa3a6eb5eea31416daebc0f4c05900e9c7a2

  • SHA512

    25099f19b8cc0f7949cf66ee484ded4fc0725ff9a5d4aa626d1c6b59660f2cbc756187b29da74d77812e9c3f5777bfd9112c4ac82801b889971c0cd1e055370d

  • SSDEEP

    3072:MDEzauhxCbEWnr0kFReAWO8fo3PXl9Z7S/yCsKh2EzZA/z:MDWvhklrtnWOgo35e/yCthvUz

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.fea88f47d673af74899d235b81b9383d.exe

    • Size

      109KB

    • MD5

      fea88f47d673af74899d235b81b9383d

    • SHA1

      9342d561be3082709781691f4dcaf28be6b4792a

    • SHA256

      816aa5beba633e9659ad1e5eb4cefa3a6eb5eea31416daebc0f4c05900e9c7a2

    • SHA512

      25099f19b8cc0f7949cf66ee484ded4fc0725ff9a5d4aa626d1c6b59660f2cbc756187b29da74d77812e9c3f5777bfd9112c4ac82801b889971c0cd1e055370d

    • SSDEEP

      3072:MDEzauhxCbEWnr0kFReAWO8fo3PXl9Z7S/yCsKh2EzZA/z:MDWvhklrtnWOgo35e/yCthvUz

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks