Overview

overview

10

Static

static

10

NEAS.966e6...40.exe

windows7-x64

7

NEAS.966e6...40.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    NEAS.966e67fcc63ac7c6522b389595723e40.exe

  • Size

    61KB

  • MD5

    966e67fcc63ac7c6522b389595723e40

  • SHA1

    32ae7df73647afc37b1c76579329464bb6f42f31

  • SHA256

    de977ba64ace364d5717dc30a7662e5739d82aa9dc00597f9aa48f0c6f9b7011

  • SHA512

    2e08ce2bed2793c6f91db170bcb37f682be035ebf2921466e3d7a3dcbad5dec1e9e06c87f5579d916e07c9d7afb18e05c2034f9f90dc39abf0bf13d30e8ce819

  • SSDEEP

    1536:afz8+JjFMRGwf57VF9svr83uMDVUPsZqGR:iz8OjuGw7ZjUUf

Score
10/10
upxpersistencedroppertrojanberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Backdoor - Berbew 1 IoCs

    Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    persistencedroppertrojan
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • NEAS.966e67fcc63ac7c6522b389595723e40.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections