General

  • Target

    virussign.com_96313a6db62db0731fd6c2d46b3e4ee0.vir

  • Size

    768KB

  • Sample

    240602-lmw6cshd9x

  • MD5

    96313a6db62db0731fd6c2d46b3e4ee0

  • SHA1

    faa43f3042d1fa56bb5e44fc334bd89b3660e942

  • SHA256

    13c85f6941c742a0230e126497671642bd815d9375264a24849e0c0029b08725

  • SHA512

    efa437fff5c29dc0715d0b43c4b7e727f78a193a0fc08de1331968edacd2c39a05a822d4cd6b0a24d8941a040c5f57f47b653fb3cd2272a47d5136c8ea846f1f

  • SSDEEP

    12288:0Q/vu6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGJ:eq5h3q5htaSHFaZRBEYyqmaf2qwiHPKu

Malware Config

Targets

    • Target

      virussign.com_96313a6db62db0731fd6c2d46b3e4ee0.vir

    • Size

      768KB

    • MD5

      96313a6db62db0731fd6c2d46b3e4ee0

    • SHA1

      faa43f3042d1fa56bb5e44fc334bd89b3660e942

    • SHA256

      13c85f6941c742a0230e126497671642bd815d9375264a24849e0c0029b08725

    • SHA512

      efa437fff5c29dc0715d0b43c4b7e727f78a193a0fc08de1331968edacd2c39a05a822d4cd6b0a24d8941a040c5f57f47b653fb3cd2272a47d5136c8ea846f1f

    • SSDEEP

      12288:0Q/vu6IveDVqvQ6IvYvc6IveDVqvQ6IvBaSHaMaZRBEYyqmaf2qwiHPKgRC4gvGJ:eq5h3q5htaSHFaZRBEYyqmaf2qwiHPKu

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks