Overview

overview

10

Static

static

10

d88860436e...KI.exe

windows7-x64

10

d88860436e...KI.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d88860436e8d05c5384474afbece64b0_NEIKI

  • Size

    191KB

  • MD5

    d88860436e8d05c5384474afbece64b0

  • SHA1

    13e9b9194b694280604f9759fb1c43ccbd060e89

  • SHA256

    ae1fd6076cfdd80a72be05d11f090e49688346065e4b23167ee87672a45ab918

  • SHA512

    74a725206db14c3692b90cd1f8bb84cea0b80a336abb8e8a0aef02c43e11fc4e22f580153a038c0aee2debca43c60734a38a8ed44dc290fad0db22a99f710cdb

  • SSDEEP

    3072:FhOmTsF93UYfwC6GIoutrVCfMoh52waAyiJ8mqtbfUVKty16hDsI/tS0:Fcm4FmowdHoS8fMoSVAHubPtyYxfl

Score
10/10
upxbackdoortrojandropperberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Dropper & Backdoor - Berbew 1 IoCs

    Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    backdoortrojandropper
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d88860436e8d05c5384474afbece64b0_NEIKI
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections