Overview

overview

10

Static

static

3

Backdoor.W...ew.exe

windows7-x64

10

Backdoor.W...ew.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Backdoor.Win32.Berbew.pz-2effaeb589c84d618d8145c7ba27413835b7a6f941e6a3f98e1e5f1ed8b20d08N

  • Size

    80KB

  • Sample

    240920-qwnmsszanq

  • MD5

    51b75f96148882329e0a7a1fc4f8b670

  • SHA1

    283d3fc429589beb49df87f402abb6bab5420caf

  • SHA256

    2effaeb589c84d618d8145c7ba27413835b7a6f941e6a3f98e1e5f1ed8b20d08

  • SHA512

    b86709a638657223006f81bb7b1a70878ba5e967fbf5fa6fe316eb1586dad9b7914f76ab5b1ddaec29758ab4f4517155f7a9b25d243c12ff8bc6a68be45e5a91

  • SSDEEP

    1536:RjuNxIl027lVm3zZzSQZhyCzTiVScN+zL20gJi1i9:INn2JgjdSNCPiVXgzL20WKS

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      Backdoor.Win32.Berbew.pz-2effaeb589c84d618d8145c7ba27413835b7a6f941e6a3f98e1e5f1ed8b20d08N

    • Size

      80KB

    • MD5

      51b75f96148882329e0a7a1fc4f8b670

    • SHA1

      283d3fc429589beb49df87f402abb6bab5420caf

    • SHA256

      2effaeb589c84d618d8145c7ba27413835b7a6f941e6a3f98e1e5f1ed8b20d08

    • SHA512

      b86709a638657223006f81bb7b1a70878ba5e967fbf5fa6fe316eb1586dad9b7914f76ab5b1ddaec29758ab4f4517155f7a9b25d243c12ff8bc6a68be45e5a91

    • SSDEEP

      1536:RjuNxIl027lVm3zZzSQZhyCzTiVScN+zL20gJi1i9:INn2JgjdSNCPiVXgzL20WKS

    Score
    10/10
    discoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks