General

  • Target

    27be5b68586b453e839a61359ae59fe4202705a2b2da77e3b0f2d535e3cba933

  • Size

    205KB

  • MD5

    cd2d87007d206abd6e91c53db1be7a15

  • SHA1

    ff02d5211e8f9c99dbf57835337f909f61bfa7ac

  • SHA256

    27be5b68586b453e839a61359ae59fe4202705a2b2da77e3b0f2d535e3cba933

  • SHA512

    2fe557897e589ecf1bb1b12bd5fb2f32261551b6eb3043884722008d965404a659a70b718453a52aa0696fc706657d481807ae6a1c34434beb6146e8a2a84cff

  • SSDEEP

    6144:SfI3PjZ3mvGyZ6YugQdjGG1wsKm6eBgdQbz:SfQMGyXu1jGG1wsGeBg8

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://f/wcmd.htm

http://f/ppslog.php

http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 27be5b68586b453e839a61359ae59fe4202705a2b2da77e3b0f2d535e3cba933
    .exe windows:1 windows x86 arch:x86

    26babd76bbb7f9c516a338b0601b4c9f


    Headers

    Imports

    Sections