General

  • Target

    virussign.com_27eee676babdd6aa1be84531f1f58910.vir

  • Size

    282KB

  • Sample

    240602-le6d3ahb9t

  • MD5

    27eee676babdd6aa1be84531f1f58910

  • SHA1

    71890ad51f035895b1a5a9dc1bc257c537f8dcbf

  • SHA256

    27f6e903ed0b57e2f6ce26edebb64eb7d298c23438eaee11a102b98994e6ccde

  • SHA512

    6d6adbb715a9906b4327ceec7b618ab100524c4d08c8415040f5d3796f27c34430fdf7a0a2576600ebe35f97c430ee505b4175ed1ed1fffe5e45f5c3dcd2f876

  • SSDEEP

    6144:zDNHLdoTTka2k7BDnthPLP6f7udQkEjiPISUOgW9X+hOGzC/:NWHka2k7BBxPakmZzcukG2/

Malware Config

Targets

    • Target

      virussign.com_27eee676babdd6aa1be84531f1f58910.vir

    • Size

      282KB

    • MD5

      27eee676babdd6aa1be84531f1f58910

    • SHA1

      71890ad51f035895b1a5a9dc1bc257c537f8dcbf

    • SHA256

      27f6e903ed0b57e2f6ce26edebb64eb7d298c23438eaee11a102b98994e6ccde

    • SHA512

      6d6adbb715a9906b4327ceec7b618ab100524c4d08c8415040f5d3796f27c34430fdf7a0a2576600ebe35f97c430ee505b4175ed1ed1fffe5e45f5c3dcd2f876

    • SSDEEP

      6144:zDNHLdoTTka2k7BDnthPLP6f7udQkEjiPISUOgW9X+hOGzC/:NWHka2k7BBxPakmZzcukG2/

    Score
    10/10
    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks