Overview

overview

10

Static

static

10

1c693a6020...KI.exe

windows7-x64

10

1c693a6020...KI.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1c693a60202ab21ec468e72d13cccbc0_NEIKI

  • Size

    351KB

  • MD5

    1c693a60202ab21ec468e72d13cccbc0

  • SHA1

    fcfb1405f40b31429d6344e39c466c5d4797e8b5

  • SHA256

    f62958629395ecabe50259cfec131f1cd602e0ed2668bdd951e513bc6ffeda0c

  • SHA512

    dd10f9914c201c8a74389d26bb433059e52b5804afbd437041897d0955acec414de1f3e8d7ea6c6b497135f44fcefbed4f1d9271cf4f513d157d04d84fc3d7f6

  • SSDEEP

    6144:bcm4FmowdHoSgWrXD486jCpoAhlq1mEjBqLyOSlhNFF23k:h4wFHoSgWj168w1VjsyvhNFF20

Score
10/10
upxbackdoortrojandropperberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Dropper & Backdoor - Berbew 1 IoCs

    Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    backdoortrojandropper
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 1c693a60202ab21ec468e72d13cccbc0_NEIKI
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections