General

  • Target

    b427806d86d2d2ba9ceebcea6a353572ec4746790623691ecd8f8b504f7116b5

  • Size

    101KB

  • MD5

    aa3547f3c4b79773914b8f510caf45e4

  • SHA1

    c80eb339840e020d468227dceba4b7038fa51073

  • SHA256

    b427806d86d2d2ba9ceebcea6a353572ec4746790623691ecd8f8b504f7116b5

  • SHA512

    b5bd790631870a71509f6e095af51fd9493978ec98ed4641e7cc99e85f93bbda28b258c74209ccd845a0fe8df020c345a276945a4e802f89712c9692a468d759

  • SSDEEP

    3072:Gs3YOjwXlsH2duXqbyu0sY7q5AnrHY4vDX:xj4WHF853Anr44vDX

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://tat-neftbank.ru/kkq.php

http://tat-neftbank.ru/wcmd.htm

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b427806d86d2d2ba9ceebcea6a353572ec4746790623691ecd8f8b504f7116b5
    .exe windows:1 windows x86 arch:x86

    95e6f8741083e0c7d9a63d45e2472360


    Headers

    Imports

    Sections