Overview

overview

10

Static

static

3

0336226867...cf.exe

windows7-x64

10

0336226867...cf.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    03362268673987ab80fd1653a638b22f38c169473b15d6da7415a8fa35e481cf

  • Size

    59KB

  • Sample

    241222-xvc81awlas

  • MD5

    c57c310c800697815b5e923476e8817f

  • SHA1

    8aad041cf6510ede69c503de46ec2d0448b8e87f

  • SHA256

    03362268673987ab80fd1653a638b22f38c169473b15d6da7415a8fa35e481cf

  • SHA512

    3199c11029c1fe506e8cc74b0972a63142a6abcb339097b3440264883e883d99fa58eaf38883d19de38d014c5fb89cd0727ddfe78261b2ea78464372fdc525dc

  • SSDEEP

    768:sKYPUBI/HI3kXawQNvQI41Amc55Wwu+YjZ9Z/1H5dg5nf1fZMEBFELvkVgFR:sKYMBI/HI3kXvQNX5H7u+YjZF0NCyVs

Score
10/10
berbewbackdoordiscoverypersistence

Malware Config

Targets

    • Target

      03362268673987ab80fd1653a638b22f38c169473b15d6da7415a8fa35e481cf

    • Size

      59KB

    • MD5

      c57c310c800697815b5e923476e8817f

    • SHA1

      8aad041cf6510ede69c503de46ec2d0448b8e87f

    • SHA256

      03362268673987ab80fd1653a638b22f38c169473b15d6da7415a8fa35e481cf

    • SHA512

      3199c11029c1fe506e8cc74b0972a63142a6abcb339097b3440264883e883d99fa58eaf38883d19de38d014c5fb89cd0727ddfe78261b2ea78464372fdc525dc

    • SSDEEP

      768:sKYPUBI/HI3kXawQNvQI41Amc55Wwu+YjZ9Z/1H5dg5nf1fZMEBFELvkVgFR:sKYMBI/HI3kXvQNX5H7u+YjZF0NCyVs

    Score
    10/10
    berbewbackdoordiscoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Berbew

      Berbew is a backdoor written in C++.

      backdoorberbew

    • Berbew family

      berbew

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks