Overview

overview

10

Static

static

10

NEAS.cfd74...50.exe

windows7-x64

10

NEAS.cfd74...50.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.cfd745eb375ab52cae4a58a76e05be50.exe

  • Size

    196KB

  • Sample

    231116-mq6dwabg6z

  • MD5

    cfd745eb375ab52cae4a58a76e05be50

  • SHA1

    e799e965f1b696dc7f19b854f3ea6949361c148b

  • SHA256

    81c6b7fa21565fd9f351dca6a694837bde5fb4b3b0b2c8f4575dc701a074edc3

  • SHA512

    9101914b4573eb486e93db1567f65fedf0f54f0de8f0a875e3343a823b5b2aeb70cf497c8eea04d60afae97e42520f1df09aecb0ca56ca6f34a70b03d7c4716f

  • SSDEEP

    6144:31dVW1LW6BTsa81+jq4peBK02SjSM0zI6rH:3LM1LdTs1+jheBwSv0E6rH

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.cfd745eb375ab52cae4a58a76e05be50.exe

    • Size

      196KB

    • MD5

      cfd745eb375ab52cae4a58a76e05be50

    • SHA1

      e799e965f1b696dc7f19b854f3ea6949361c148b

    • SHA256

      81c6b7fa21565fd9f351dca6a694837bde5fb4b3b0b2c8f4575dc701a074edc3

    • SHA512

      9101914b4573eb486e93db1567f65fedf0f54f0de8f0a875e3343a823b5b2aeb70cf497c8eea04d60afae97e42520f1df09aecb0ca56ca6f34a70b03d7c4716f

    • SSDEEP

      6144:31dVW1LW6BTsa81+jq4peBK02SjSM0zI6rH:3LM1LdTs1+jheBwSv0E6rH

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks