General

  • Target

    b7ae23a6368c8b070fbc34e6632e5d97ab6bf3c1f8a09ddd6c04afcf0f9e1f75

  • Size

    59KB

  • Sample

    241110-cfqwbsxcne

  • MD5

    cf35d6fc24e62cb968e656d541487a3a

  • SHA1

    16892a908c70f7cd6ab4dbc0a8beea2e4d399261

  • SHA256

    b7ae23a6368c8b070fbc34e6632e5d97ab6bf3c1f8a09ddd6c04afcf0f9e1f75

  • SHA512

    3661274aff5e0156dc4bac861c85e2d288b690aef88bd1fbaaaebdcd36af61cfa163a2c5e18e3739dd81f23fa09c507f16bac8c60c1fbb6e6115f4380572cf7a

  • SSDEEP

    768:ziIObqJkkTC8gFLiRShAllcp687wjFQmd2gnRfoVSNhl4MBZ/1H5m5nf1fZMEBFN:zirxkT5ShScp6ZzZRfo0NhlbwNCyVso

Malware Config

Targets

    • Target

      b7ae23a6368c8b070fbc34e6632e5d97ab6bf3c1f8a09ddd6c04afcf0f9e1f75

    • Size

      59KB

    • MD5

      cf35d6fc24e62cb968e656d541487a3a

    • SHA1

      16892a908c70f7cd6ab4dbc0a8beea2e4d399261

    • SHA256

      b7ae23a6368c8b070fbc34e6632e5d97ab6bf3c1f8a09ddd6c04afcf0f9e1f75

    • SHA512

      3661274aff5e0156dc4bac861c85e2d288b690aef88bd1fbaaaebdcd36af61cfa163a2c5e18e3739dd81f23fa09c507f16bac8c60c1fbb6e6115f4380572cf7a

    • SSDEEP

      768:ziIObqJkkTC8gFLiRShAllcp687wjFQmd2gnRfoVSNhl4MBZ/1H5m5nf1fZMEBFN:zirxkT5ShScp6ZzZRfo0NhlbwNCyVso

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Berbew

      Berbew is a backdoor written in C++.

    • Berbew family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks