Overview

overview

10

Static

static

10

c09ef330ce...32.exe

windows7-x64

10

c09ef330ce...32.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c09ef330ce499209cb24e5190ed93a32.exe

  • Size

    128KB

  • Sample

    240105-sc54vaebdj

  • MD5

    c09ef330ce499209cb24e5190ed93a32

  • SHA1

    69dc1ef251b574886382583ce36d7fc413cbb0fd

  • SHA256

    89ce03d7a65c15cbfebec0ec42b8a804d66f6dbf416a1d0d28437ef30a36fb84

  • SHA512

    a83b9395e07801661f7471e1d802789d70e5100145e43f3016b8f11b7cf1351d8327845cf8ff23f3d832e0c097409a8b5918b854e6f7c1e6fc4266c141651246

  • SSDEEP

    3072:6EYj8dBxHEPFdlx3ywWXBmW2wS7IrHrYj:DYjmBNEPrNWRmHwMOHm

Score
10/10
berbewbackdoordropperpersistencetrojan

Malware Config

Targets

    • Target

      c09ef330ce499209cb24e5190ed93a32.exe

    • Size

      128KB

    • MD5

      c09ef330ce499209cb24e5190ed93a32

    • SHA1

      69dc1ef251b574886382583ce36d7fc413cbb0fd

    • SHA256

      89ce03d7a65c15cbfebec0ec42b8a804d66f6dbf416a1d0d28437ef30a36fb84

    • SHA512

      a83b9395e07801661f7471e1d802789d70e5100145e43f3016b8f11b7cf1351d8327845cf8ff23f3d832e0c097409a8b5918b854e6f7c1e6fc4266c141651246

    • SSDEEP

      3072:6EYj8dBxHEPFdlx3ywWXBmW2wS7IrHrYj:DYjmBNEPrNWRmHwMOHm

    Score
    10/10
    backdoordropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

      backdoortrojandropper

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks