Overview

overview

10

Static

static

3

b684185e7e...aa.exe

windows7-x64

10

b684185e7e...aa.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b684185e7ec3beb4f006828dba38c24bfb9a6dda88ae6d4f466d1a2af9a96aaa

  • Size

    59KB

  • Sample

    250306-lrq5xavxdz

  • MD5

    06d04e798c2ccb676bdb3b330fca2cd9

  • SHA1

    c9f0b85fcfe078ad611de7283b25ff857750cea5

  • SHA256

    b684185e7ec3beb4f006828dba38c24bfb9a6dda88ae6d4f466d1a2af9a96aaa

  • SHA512

    cd06654ae3718e6d6a2366119c90a238c824deaf07460f1137b256b402d2a510ab35e8af18d7275481cf6dd5e0d411db9700aceed774a8d2e2ad8038e7e499d7

  • SSDEEP

    768:7dUUOmsrv4/XoeIkgKmQq/vrXo5H9F7GdKA/XOLd5rZ/1H5+55nf1fZMEBFELvkC:q90voeZDOKc+B53obNCyVs

Score
10/10
berbewbackdoordiscoverypersistence

Malware Config

Targets

    • Target

      b684185e7ec3beb4f006828dba38c24bfb9a6dda88ae6d4f466d1a2af9a96aaa

    • Size

      59KB

    • MD5

      06d04e798c2ccb676bdb3b330fca2cd9

    • SHA1

      c9f0b85fcfe078ad611de7283b25ff857750cea5

    • SHA256

      b684185e7ec3beb4f006828dba38c24bfb9a6dda88ae6d4f466d1a2af9a96aaa

    • SHA512

      cd06654ae3718e6d6a2366119c90a238c824deaf07460f1137b256b402d2a510ab35e8af18d7275481cf6dd5e0d411db9700aceed774a8d2e2ad8038e7e499d7

    • SSDEEP

      768:7dUUOmsrv4/XoeIkgKmQq/vrXo5H9F7GdKA/XOLd5rZ/1H5+55nf1fZMEBFELvkC:q90voeZDOKc+B53obNCyVs

    Score
    10/10
    berbewbackdoordiscoverypersistence

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Berbew

      Berbew is a backdoor written in C++.

      backdoorberbew

    • Berbew family

      berbew

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks