General

  • Target

    84c4cf06fbefa36d969a410d12b99593765b9053a458615faa37d62c45909603N

  • Size

    128KB

  • MD5

    b938906504f7544ecb4def7b41f549f0

  • SHA1

    e9c5718d333ff4822e300527f155d157c1b16376

  • SHA256

    84c4cf06fbefa36d969a410d12b99593765b9053a458615faa37d62c45909603

  • SHA512

    f2a776babef28d909e641a9ddafcb20c414da7f88be5fd498ac50bd4af8111bdf8a74c63476ea09067b967de4133bc21fb13da0e4c74900133edbd90e0c3d8b6

  • SSDEEP

    3072:ycPmQfmMwUKqQmZfm+kte+MZmYm+DqVSLC617:vmfDmZfm+kte+MZmYm+DaG

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://tat-neftbank.ru/kkq.php

http://tat-neftbank.ru/wcmd.htm

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 84c4cf06fbefa36d969a410d12b99593765b9053a458615faa37d62c45909603N
    .exe windows:1 windows x86 arch:x86

    95e6f8741083e0c7d9a63d45e2472360


    Headers

    Imports

    Sections