Overview

overview

10

Static

static

10

NEAS.0678e...40.exe

windows7-x64

10

NEAS.0678e...40.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.0678ee12756d2c17697ff5ac75861740.exe

  • Size

    1.7MB

  • MD5

    0678ee12756d2c17697ff5ac75861740

  • SHA1

    97e506c7eca7eb67d367633dc99070a8a452f736

  • SHA256

    119d44492d9f08d9de876cdb820f044bfc827d8157e1e0a9a83d020e94d9c4c1

  • SHA512

    2733babd85c522835b67bda24e78f827d429f8d8dc84ae52db01cdd2aee71ee519fd6c983bb1ffe5946e10361a7f2b6b606016c9cd84f6e21ace4beebba81381

  • SSDEEP

    49152:8ObOQtPYJu5grLJ0D1mTfluEVgva4Y9vKdawg:/bOwPYJuvpmTfkE+va4Y9vKdawg

Score
10/10
upxpersistencedroppertrojanberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Backdoor - Berbew 1 IoCs

    Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    persistencedroppertrojan
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.0678ee12756d2c17697ff5ac75861740.exe
    .exe windows:4 windows x86


    Headers

    Sections