Backdoor[.]Win32[.]Berbew[.]AA[.]MTB-390f46b77603cd1b1e1663ab4ec986055053c8f648be1106ff0d80caacaf79a2N

Sharing

Copy URL Twitter E-mail

General

Target

Backdoor.Win32.Berbew.AA.MTB-390f46b77603cd1b1e1663ab4ec986055053c8f648be1106ff0d80caacaf79a2N
Size

78KB
MD5

b8d6970884a4a31342ed93a4acd24d70
SHA1

f802cc478e1283b8129b336238ff896e581dc628
SHA256

390f46b77603cd1b1e1663ab4ec986055053c8f648be1106ff0d80caacaf79a2
SHA512

aea74d25fda7ff6c226d6d20089f880321c4e2f8e8b89b2323f5775f809068a8e56dd8268c4e05e763642c732890d9666a14dc53207d33a23a3e819cffd39e3b
SSDEEP

1536:pswJFgoU1FOyD9vsePy1jUnzfOmlhpqxoGJK1CjHP1cRMXiVAN+zL20gJi1ie:pswvgnImCjbXiVAgzL20WKt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Backdoor.Win32.Berbew.AA.MTB-390f46b77603cd1b1e1663ab4ec986055053c8f648be1106ff0d80caacaf79a2N

Files

Backdoor.Win32.Berbew.AA.MTB-390f46b77603cd1b1e1663ab4ec986055053c8f648be1106ff0d80caacaf79a2N
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.pdata
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 132KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fldo
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.pdata Size: 31KB - Virtual size: 31KB

.rdata Size: - Virtual size: 132KB

.pdata Size: 12KB - Virtual size: 12KB

.idata Size: 3KB - Virtual size: 3KB

.fldo Size: 512B - Virtual size: 4KB

.text Size: 4KB - Virtual size: 4KB

.pdata Size: 8KB - Virtual size: 12KB

.idata Size: 512B - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.rdata Size: 1024B - Virtual size: 4KB

.reloc Size: 9KB - Virtual size: 12KB

.idata Size: 512B - Virtual size: 4KB

.pdata
Size: 31KB - Virtual size: 31KB

.rdata
Size: - Virtual size: 132KB

.pdata
Size: 12KB - Virtual size: 12KB

.idata
Size: 3KB - Virtual size: 3KB

.fldo
Size: 512B - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 4KB

.pdata
Size: 8KB - Virtual size: 12KB

.idata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.rdata
Size: 1024B - Virtual size: 4KB

.reloc
Size: 9KB - Virtual size: 12KB

.idata
Size: 512B - Virtual size: 4KB