Overview

overview

10

Static

static

10

3dd2fa8f18...KI.exe

windows7-x64

10

3dd2fa8f18...KI.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3dd2fa8f1843aff8461fc9e2ae4e3b70_NEIKI

  • Size

    348KB

  • MD5

    3dd2fa8f1843aff8461fc9e2ae4e3b70

  • SHA1

    b3117f8bc201b19b8447afea3456d135bdafa61a

  • SHA256

    2e63d048bdf044d93129f9ea3aa7f14f7c16b10d80b343ab9d0ba6f89ce22a6d

  • SHA512

    f8a1303178e02e7076ca18fd34e682fec2b3ed1ee474afe31b3827e52d947e976bd138fa0f7453c9bda48fa02056c9b1f3861a4e9f573b91c31064da329a9fe6

  • SSDEEP

    6144:bcm4FmowdHoSgWrXD486jCpoAhlq1mEjBqLyOSlhNFF2i:h4wFHoSgWj168w1VjsyvhNFF2i

Score
10/10
upxbackdoortrojandropperberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Dropper & Backdoor - Berbew 1 IoCs

    Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    backdoortrojandropper
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3dd2fa8f1843aff8461fc9e2ae4e3b70_NEIKI
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections