Overview

overview

10

Static

static

10

68925307d7...AS.exe

windows7-x64

10

68925307d7...AS.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    68925307d7aab385db18c82e991c0ed0_NEAS

  • Size

    368KB

  • Sample

    240507-e88mysaa2t

  • MD5

    68925307d7aab385db18c82e991c0ed0

  • SHA1

    bac8859ea6192df6d3f393ae16f33a6f903782e0

  • SHA256

    85b4d132dc3e4500b5308b9c7675189f5614acb472c45d6c888d911072460e81

  • SHA512

    298d2940b5eeab0269ca75fd6d831b29637aadcff0143bc15221a867cd744b034fc2e4956ea5a9074875e191157e2b1ef42fd910253cf4cf800a1088f9ee5bc6

  • SSDEEP

    6144:ZPnhj9GkylE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9Fv:xh8gaAD6RrI1+lDMEAD6Rr2NWL

Score
10/10
berbewbackdoordropperpersistencetrojan

Malware Config

Targets

    • Target

      68925307d7aab385db18c82e991c0ed0_NEAS

    • Size

      368KB

    • MD5

      68925307d7aab385db18c82e991c0ed0

    • SHA1

      bac8859ea6192df6d3f393ae16f33a6f903782e0

    • SHA256

      85b4d132dc3e4500b5308b9c7675189f5614acb472c45d6c888d911072460e81

    • SHA512

      298d2940b5eeab0269ca75fd6d831b29637aadcff0143bc15221a867cd744b034fc2e4956ea5a9074875e191157e2b1ef42fd910253cf4cf800a1088f9ee5bc6

    • SSDEEP

      6144:ZPnhj9GkylE4f9FIUpOVw86CmOJfTo9FIUIhrcflDMxy9FIUpOVw86CmOJfTo9Fv:xh8gaAD6RrI1+lDMEAD6Rr2NWL

    Score
    10/10
    backdoordropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

      backdoortrojandropper

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks