General

  • Target

    virussign.com_14b0ce9a8da5e1d40edd8a51391696a0.vir

  • Size

    108KB

  • Sample

    240602-ly8crshg6x

  • MD5

    14b0ce9a8da5e1d40edd8a51391696a0

  • SHA1

    ec3bb4d3cc3cd96b653342317d74867e11c0cf9f

  • SHA256

    dab7ceb5043253431bc8355ff4c08af88056efd09d6b560ddbda6582ff9f0dae

  • SHA512

    9f9c172cec747e1cc37448b435e2a658122f185a4d7176ad64cfad918edf7101ff2d9ad5c2d9d6a0356d1eda74f9091f73505559f1bde658ba734e3054d5e635

  • SSDEEP

    3072:J3T/Hsk2XfGIUFzvNUjmOiBn3w8BdTj2h3K:VT/HK3gbijVu3w8BdTj2VK

Malware Config

Targets

    • Target

      virussign.com_14b0ce9a8da5e1d40edd8a51391696a0.vir

    • Size

      108KB

    • MD5

      14b0ce9a8da5e1d40edd8a51391696a0

    • SHA1

      ec3bb4d3cc3cd96b653342317d74867e11c0cf9f

    • SHA256

      dab7ceb5043253431bc8355ff4c08af88056efd09d6b560ddbda6582ff9f0dae

    • SHA512

      9f9c172cec747e1cc37448b435e2a658122f185a4d7176ad64cfad918edf7101ff2d9ad5c2d9d6a0356d1eda74f9091f73505559f1bde658ba734e3054d5e635

    • SSDEEP

      3072:J3T/Hsk2XfGIUFzvNUjmOiBn3w8BdTj2h3K:VT/HK3gbijVu3w8BdTj2VK

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks