berbew | cea3341c54ef192400760b067474aa7240a1a80f637aa00d1f6dd8fb0b77d9ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cea3341c54ef192400760b067474aa7240a1a80f637aa00d1f6dd8fb0b77d9ac
Size

240KB
MD5

5815236de540da5a9e54a6abe80b1996
SHA1

dcce829460d7e51b8ab98d5697b13fbb418c13b9
SHA256

cea3341c54ef192400760b067474aa7240a1a80f637aa00d1f6dd8fb0b77d9ac
SHA512

d0370c8962ced8f1c2fa7a647dd1b0beeec3e8638eda7de4245da50388e85466267b37fb141f0d3732f586f77bc1d43c06dc4feb8d9701be8d737cac01d9863f
SSDEEP

6144:Nh2jvws+H3Lb+Qw/WYgFIgsh0KXoQr8jTQjewInB9:Nhx7LKQweY0sam38vZwIB9

Score

10^/10

berbew

Malware Config

Signatures

Berbew family
berbew

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cea3341c54ef192400760b067474aa7240a1a80f637aa00d1f6dd8fb0b77d9ac

Files

cea3341c54ef192400760b067474aa7240a1a80f637aa00d1f6dd8fb0b77d9ac
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 132KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fldo
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.l1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ