Overview

overview

10

Static

static

10

289912672a...KI.exe

windows7-x64

10

289912672a...KI.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    289912672a42a89dc705d567cb208ba0_NEIKI

  • Size

    168KB

  • MD5

    289912672a42a89dc705d567cb208ba0

  • SHA1

    c85700b25617604345e464ea5087cf9dbb46c1ec

  • SHA256

    c599d7e2aee84264f47b30a60ad01041fee55cb7bf79e4ffc8e35d2436643113

  • SHA512

    e40106775734219c95e484284b24e17802edb4159b0be68ae8c3c67ca498bacb9e4e033fcc421f3be02fa781a1e5fe6ed77b660fba96503a2f81a5dd2722e4ef

  • SSDEEP

    3072:4dEUfKj8BYbDiC1ZTK7sxtLUIGKxK/tDwXQw30naFYaCkKEfNqh:4USiZTK40uxKFLw+aFlKEfNa

Score
10/10
upxbackdoortrojandropperberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Dropper & Backdoor - Berbew 1 IoCs

    Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    backdoortrojandropper
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 289912672a42a89dc705d567cb208ba0_NEIKI
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections