General

  • Target

    b17e90f01e2631a1b5ded49b876c315a.exe

  • Size

    276KB

  • Sample

    231230-xj2r8adhe2

  • MD5

    b17e90f01e2631a1b5ded49b876c315a

  • SHA1

    c260f2678fce452b779fcdf69e028f4a0f8ad0d6

  • SHA256

    961e9e23dbc775641b70567a04d840e8e060b4bcccb3683c867ad2f5605e4965

  • SHA512

    02d3e21aec4f386f75be09499c322f8cfd0137ef899f04846e91ebcea52824848a0093e997c142dd887b1c527a54291277b81f66bb889094dc6b427b72c7012d

  • SSDEEP

    6144:oSdvORLSdn7MUZst5qXsunbLwMddjPXmF6EC1LlzxAKN+xTU5AX/KXWZCKl/j:oScR+pMUQunbpd/mF6ECJlzxAKN2X/Ws

Malware Config

Targets

    • Target

      b17e90f01e2631a1b5ded49b876c315a.exe

    • Size

      276KB

    • MD5

      b17e90f01e2631a1b5ded49b876c315a

    • SHA1

      c260f2678fce452b779fcdf69e028f4a0f8ad0d6

    • SHA256

      961e9e23dbc775641b70567a04d840e8e060b4bcccb3683c867ad2f5605e4965

    • SHA512

      02d3e21aec4f386f75be09499c322f8cfd0137ef899f04846e91ebcea52824848a0093e997c142dd887b1c527a54291277b81f66bb889094dc6b427b72c7012d

    • SSDEEP

      6144:oSdvORLSdn7MUZst5qXsunbLwMddjPXmF6EC1LlzxAKN+xTU5AX/KXWZCKl/j:oScR+pMUQunbpd/mF6ECJlzxAKN2X/Ws

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks