General

  • Target

    df7f851dcc3d693bc1ead1870b8880a432997c410f5ab7194e7a1d6d32dad6e9N

  • Size

    161KB

  • MD5

    db72874a3f97d544e0e883f13adfe030

  • SHA1

    0a208017a97a984ed19a5621de3b4b5a66aca1ba

  • SHA256

    df7f851dcc3d693bc1ead1870b8880a432997c410f5ab7194e7a1d6d32dad6e9

  • SHA512

    ab21370bee1caf1be642925563a87280dbf6402fa5527be64134cc2554ec4876fa4dc086df64f31db15e98f68c7dfa8b0baa256cd975fbce42f2705a1dc69776

  • SSDEEP

    3072:OmdPM8mmnGK6S3+M047984dvHubuczE+aDkMVwtCJXeex7rrIRZK8K8/kvV:OmNmgV3+R47984dvHubucYDDkMVwtmeY

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://f/wcmd.htm

http://f/ppslog.php

http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • df7f851dcc3d693bc1ead1870b8880a432997c410f5ab7194e7a1d6d32dad6e9N
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections