General

  • Target

    e4f4cd247c7c80b3c46074a9b465f03f111a54cfd6cb65c0d1700f6cc1cc0b5bN

  • Size

    161KB

  • MD5

    ec75321ec27db6ec0ca4dad91e254140

  • SHA1

    934688ea832031789fae9410afa92dbee77b8814

  • SHA256

    e4f4cd247c7c80b3c46074a9b465f03f111a54cfd6cb65c0d1700f6cc1cc0b5b

  • SHA512

    9e85abc3abcbe4dfe59353e5ab0e1bfb2e2af6fb27e03e1ed0b5268db7f74e8d427f5860042d6637da44dbad6add08a1c0222adb24f67645eeed6ad8e04d0b67

  • SSDEEP

    3072:WzyIP86QCP0yTA7X1YeBIMq4QGnklVwtCJXeex7rrIRZK8K8/kvV:KjDQCsyTw1Yenq3aklVwtmeetrIyRV

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://f/wcmd.htm

http://f/ppslog.php

http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e4f4cd247c7c80b3c46074a9b465f03f111a54cfd6cb65c0d1700f6cc1cc0b5bN
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections