Backdoor[.]Win32[.]Berbew[.]AA[.]MTB-6ed8fcefc65dc3992d657b0adbb811f80b1e26d71b243775beca32688f0de1ecN

Sharing

Copy URL

Twitter E-mail

General

Target

Backdoor.Win32.Berbew.AA.MTB-6ed8fcefc65dc3992d657b0adbb811f80b1e26d71b243775beca32688f0de1ecN
Size

79KB
MD5

917ac7b95638a94332abac92590cdcb0
SHA1

a566c10a336ed2de5565acfd9d5100e36a3f25e3
SHA256

6ed8fcefc65dc3992d657b0adbb811f80b1e26d71b243775beca32688f0de1ec
SHA512

1948effbf8056ef3224624003c15178e7c3c768726150c50c6960248e9892d4727a3b19eb6397bcd437596a96267aebfdbda07a89849265b603a25db2f3fe864
SSDEEP

1536:b/8Fs6HxQr6XkQ/647uPO6Mk10sZrI1jHJZrR:zwgrAkkJuP70su1jHJ9R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Backdoor.Win32.Berbew.AA.MTB-6ed8fcefc65dc3992d657b0adbb811f80b1e26d71b243775beca32688f0de1ecN

Files

Backdoor.Win32.Berbew.AA.MTB-6ed8fcefc65dc3992d657b0adbb811f80b1e26d71b243775beca32688f0de1ecN
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 132KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 31KB - Virtual size: 31KB

.bss Size: - Virtual size: 132KB

.data Size: 12KB - Virtual size: 12KB

.idata Size: 3KB - Virtual size: 3KB

.text Size: 512B - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.rsrc Size: 5KB - Virtual size: 8KB

.rsrc Size: 4KB - Virtual size: 8KB

.idata Size: 1024B - Virtual size: 4KB

.text Size: 512B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.data Size: 9KB - Virtual size: 12KB

.reloc Size: 1024B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.idata Size: 1024B - Virtual size: 4KB

.text
Size: 31KB - Virtual size: 31KB

.bss
Size: - Virtual size: 132KB

.data
Size: 12KB - Virtual size: 12KB

.idata
Size: 3KB - Virtual size: 3KB

.text
Size: 512B - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB

.rsrc
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 4KB - Virtual size: 8KB

.idata
Size: 1024B - Virtual size: 4KB

.text
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 12KB

.reloc
Size: 1024B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.idata
Size: 1024B - Virtual size: 4KB