Overview

overview

10

Static

static

10

NEAS.a0a65...20.exe

windows7-x64

10

NEAS.a0a65...20.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.a0a65d00fd625b4b74e9fc563c6fc620.exe

  • Size

    516KB

  • MD5

    a0a65d00fd625b4b74e9fc563c6fc620

  • SHA1

    6cff4e7d0872e22b759f57a816bdecebf58fcb79

  • SHA256

    5fbb0bf531eb691d9f1d25a97b738e5f98f94c41a30d6c16ce72c260fb1fa2db

  • SHA512

    d1f7422bc0c73b1ea11cc7d7f54722eec90058cede496afebcf83e6f818df21b839eb9d92ad069de93881a4aad6e38b538f8edfa899c962cb0f6120486917daa

  • SSDEEP

    12288:N4wFHoSMu49P9mPh2kkkkK4kXkkkkkkkkl888888888888888888n6:Cu49lmPh2kkkkK4kXkkkkkkkkw

Score
10/10
upxpersistencedroppertrojanberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Backdoor - Berbew 1 IoCs

    Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    persistencedroppertrojan
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.a0a65d00fd625b4b74e9fc563c6fc620.exe
    .exe windows:4 windows x86


    Headers

    Sections