General

  • Target

    bfd9e3c1114657767a6ccc4611c81bc4d8ea6cb0cba878fdb1896d794141ef69N

  • Size

    240KB

  • MD5

    e4ef65098841f39b8b615c556aa993f0

  • SHA1

    13d1faa1a49e39de2878e577d21358f568bb69aa

  • SHA256

    bfd9e3c1114657767a6ccc4611c81bc4d8ea6cb0cba878fdb1896d794141ef69

  • SHA512

    ee7e0e69824ae4e2db0e76a2d05da3267a7ca81ef438992d638646d43adadef6f974193a9c89966ebff2e7e0932691e595cf0891e3f5201f93277acaa7a70650

  • SSDEEP

    6144:Y0Vgt5WNGyZ6YugQdjGG1wsKm6eBgdQbkoKTBEA:9GyXu1jGG1wsGeBgRTGA

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://f/wcmd.htm

http://f/ppslog.php

http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • bfd9e3c1114657767a6ccc4611c81bc4d8ea6cb0cba878fdb1896d794141ef69N
    .exe windows:1 windows x86 arch:x86

    26babd76bbb7f9c516a338b0601b4c9f


    Headers

    Imports

    Sections