Overview

overview

10

Static

static

10

NEAS.e689d...10.exe

windows7-x64

10

NEAS.e689d...10.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.e689d3e81e57f06247ce495d5a4c1c10.exe

  • Size

    85KB

  • Sample

    231117-gj5wwagh3w

  • MD5

    e689d3e81e57f06247ce495d5a4c1c10

  • SHA1

    a7e61fbb2472d5d000be9c073693d0022259d3c4

  • SHA256

    b74bce4ffe6a6966c473b9a2082673a8b6109e12a18d781f616c9298e1de82af

  • SHA512

    58c455946dfa2cb8ce3e13ee0519341eb481348a53ba3b5c9be54edcfa4ab097664028a75cfed48ea45bba57c9fd1f6643c336f6e882ebb5878c36629a635f6d

  • SSDEEP

    1536:topLkACZOnmc6/4T316jk82LHJMQ262AjCsQ2PCZZrqOlNfVSLUK+:topLkAFnmj81HJMQH2qC7ZQOlzSLUK+

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.e689d3e81e57f06247ce495d5a4c1c10.exe

    • Size

      85KB

    • MD5

      e689d3e81e57f06247ce495d5a4c1c10

    • SHA1

      a7e61fbb2472d5d000be9c073693d0022259d3c4

    • SHA256

      b74bce4ffe6a6966c473b9a2082673a8b6109e12a18d781f616c9298e1de82af

    • SHA512

      58c455946dfa2cb8ce3e13ee0519341eb481348a53ba3b5c9be54edcfa4ab097664028a75cfed48ea45bba57c9fd1f6643c336f6e882ebb5878c36629a635f6d

    • SSDEEP

      1536:topLkACZOnmc6/4T316jk82LHJMQ262AjCsQ2PCZZrqOlNfVSLUK+:topLkAFnmj81HJMQH2qC7ZQOlzSLUK+

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks