Overview

overview

10

Static

static

10

ef9c292a00...KI.exe

windows7-x64

10

ef9c292a00...KI.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    ef9c292a00108d52682bbcabbe07c030_NEIKI

  • Size

    304KB

  • MD5

    ef9c292a00108d52682bbcabbe07c030

  • SHA1

    f4d31ea12f21fddd132803728d8f4a3631bad305

  • SHA256

    0e6efadf14c11449f83743c0a82a5da5a1d987439c4d3b3b313c565522259252

  • SHA512

    344586f92646ced2e5d1e25395469571d9c0d56a160900ae483ffa1495b6ffe68ddf19553ea19d1f06304164d830a037d07e193f51c9e0949b8c9bb3d264de84

  • SSDEEP

    6144:+/e9AZjLzR2viy1FeJLbnCBbC+nVLjOPj194oQAPJiduHyFfeoHiWmVlWaPxqZcQ:/94jLovJFeJLbnCN3xjOPj1Gg2uHyFf7

Score
10/10
backdoortrojandropperberbew

Malware Config

Signatures

  • Berbew family
    berbew
  • Malware Dropper & Backdoor - Berbew 1 IoCs

    Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    backdoortrojandropper
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ef9c292a00108d52682bbcabbe07c030_NEIKI
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections