General

  • Target

    dde7ddb5b0e3868bd61677e85a988aff.exe

  • Size

    121KB

  • Sample

    240101-y9c28ahhcq

  • MD5

    dde7ddb5b0e3868bd61677e85a988aff

  • SHA1

    1d898d7e30f246289d2d9971364e55b64ecc55cf

  • SHA256

    5a96b06bffa97783042f90404993aa8100a0a38ceb0471a71df53819ac25695e

  • SHA512

    b5a228287be877676ca30a6815a0baf16d1bf810d25a112dcd67503252ce1ce050722fe39a2f4ceedc0ac596135df12c81529321e1753f9db21ddb8b53aa0f80

  • SSDEEP

    3072:BKIckf/ZE9jej1TZCjJGRoX55Ek0O7AJnD5tvv:A+kej1YGRW5ETOarvv

Malware Config

Targets

    • Target

      dde7ddb5b0e3868bd61677e85a988aff.exe

    • Size

      121KB

    • MD5

      dde7ddb5b0e3868bd61677e85a988aff

    • SHA1

      1d898d7e30f246289d2d9971364e55b64ecc55cf

    • SHA256

      5a96b06bffa97783042f90404993aa8100a0a38ceb0471a71df53819ac25695e

    • SHA512

      b5a228287be877676ca30a6815a0baf16d1bf810d25a112dcd67503252ce1ce050722fe39a2f4ceedc0ac596135df12c81529321e1753f9db21ddb8b53aa0f80

    • SSDEEP

      3072:BKIckf/ZE9jej1TZCjJGRoX55Ek0O7AJnD5tvv:A+kej1YGRW5ETOarvv

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks