Overview

overview

10

Static

static

10

NEAS.0a185...f0.exe

windows7-x64

10

NEAS.0a185...f0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.0a185ebb599374df215b87c6138152f0.exe

  • Size

    276KB

  • Sample

    231115-eprkbsdb7t

  • MD5

    0a185ebb599374df215b87c6138152f0

  • SHA1

    9ad015bd1a5897412c4038462b337514b44e451e

  • SHA256

    a2b8656109d81c54d21a00047648c8b2833389c48b000fda0c42baa3f5c2238b

  • SHA512

    156a94df35b14dac77fcb278f8bf70c5d4e18b4b99b127a3cce1bf937e819a53cd1ae18e8b7c9529a034e2aad5c228b2a7cbaf037385e24d2aecb05651c62012

  • SSDEEP

    6144:UlIVxFJORLSdn7MUZst5qXsunbLwMddjPXmF6EC1LlzxAKN+xTU5AX/KXWZCKl/j:AIVxSR+pMUQunbpd/mF6ECJlzxAKN2Xh

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.0a185ebb599374df215b87c6138152f0.exe

    • Size

      276KB

    • MD5

      0a185ebb599374df215b87c6138152f0

    • SHA1

      9ad015bd1a5897412c4038462b337514b44e451e

    • SHA256

      a2b8656109d81c54d21a00047648c8b2833389c48b000fda0c42baa3f5c2238b

    • SHA512

      156a94df35b14dac77fcb278f8bf70c5d4e18b4b99b127a3cce1bf937e819a53cd1ae18e8b7c9529a034e2aad5c228b2a7cbaf037385e24d2aecb05651c62012

    • SSDEEP

      6144:UlIVxFJORLSdn7MUZst5qXsunbLwMddjPXmF6EC1LlzxAKN+xTU5AX/KXWZCKl/j:AIVxSR+pMUQunbpd/mF6ECJlzxAKN2Xh

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks