General

  • Target

    34c489e9c593cb15d44ad2cf0d1dae077eb66bc3cf362109b71e59c1c515ee0f

  • Size

    128KB

  • MD5

    d7b7bdbe9b5b0d88bd89d4f48b63d997

  • SHA1

    06bce2306605161fb7ceb7f1cee6fe9c4a6fb7e5

  • SHA256

    34c489e9c593cb15d44ad2cf0d1dae077eb66bc3cf362109b71e59c1c515ee0f

  • SHA512

    373bf4f39e0326c9ebfac51673b39252b58382c1d9c0a313029e24d642905025726c53a1cfd026033332af277110363381644d4382a3b6a238e6fefbd3a67c24

  • SSDEEP

    3072:SX6m2ee72kJUqUTFSSSSej6J9IDlRxyhTbhgu+tAcrbFAJc+i:Seysj6sDshsrtMk

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://crutop.nu/index.php

http://crutop.ru/index.php

http://mazafaka.ru/index.php

http://color-bank.ru/index.php

http://asechka.ru/index.php

http://trojan.ru/index.php

http://fuck.ru/index.php

http://goldensand.ru/index.php

http://filesearch.ru/index.php

http://devx.nm.ru/index.php

http://ros-neftbank.ru/index.php

http://lovingod.host.sk/index.php

http://www.redline.ru/index.php

http://cvv.ru/index.php

http://hackers.lv/index.php

http://fethard.biz/index.php

http://ldark.nm.ru/index.htm

http://gaz-prom.ru/index.htm

http://promo.ru/index.htm

http://potleaf.chat.ru/index.htm

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 34c489e9c593cb15d44ad2cf0d1dae077eb66bc3cf362109b71e59c1c515ee0f
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.