Overview

overview

10

Static

static

10

NEAS.624b9...90.exe

windows7-x64

10

NEAS.624b9...90.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.624b98cc2986ba906709007ed6241a90.exe

  • Size

    77KB

  • Sample

    231113-cm8dysga62

  • MD5

    624b98cc2986ba906709007ed6241a90

  • SHA1

    3c52fe6ff39676a3cd7d67e61ff004e30b14ca15

  • SHA256

    9fc7aadc828d1248d6775b0e8893fc5c1f4863055f1afd2ac431771677bb1a22

  • SHA512

    c2e2fa05a14e1de33dccbe4d4f18ee24a36c5b7b3adfcf6a92c5b1ebb412c1548466114d4bdb93d6746bb7d65c19864de944401847fa0ab7f095a95f9a77ba0f

  • SSDEEP

    1536:pJ40Nyhxf6JyvUWCVVEvhDMw4bmqSC2Ltbwfi+TjRC/D:pJ42+xf6JyMhVVSDRbfPxwf1TjYD

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.624b98cc2986ba906709007ed6241a90.exe

    • Size

      77KB

    • MD5

      624b98cc2986ba906709007ed6241a90

    • SHA1

      3c52fe6ff39676a3cd7d67e61ff004e30b14ca15

    • SHA256

      9fc7aadc828d1248d6775b0e8893fc5c1f4863055f1afd2ac431771677bb1a22

    • SHA512

      c2e2fa05a14e1de33dccbe4d4f18ee24a36c5b7b3adfcf6a92c5b1ebb412c1548466114d4bdb93d6746bb7d65c19864de944401847fa0ab7f095a95f9a77ba0f

    • SSDEEP

      1536:pJ40Nyhxf6JyvUWCVVEvhDMw4bmqSC2Ltbwfi+TjRC/D:pJ42+xf6JyMhVVSDRbfPxwf1TjYD

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks