berbew | 979bbc0ff9319e11bb4775e684ec526d7c9ac378d78b069e1f984cdca84d0a68N

Sharing

Copy URL Twitter E-mail

General

Target

979bbc0ff9319e11bb4775e684ec526d7c9ac378d78b069e1f984cdca84d0a68N
Size

176KB
MD5

87999c1c5788eaac8d21d45383af2c40
SHA1

0ae1b6c8668ec1c656c85ad58d3b3d36ece86d63
SHA256

979bbc0ff9319e11bb4775e684ec526d7c9ac378d78b069e1f984cdca84d0a68
SHA512

3b66bf212077bde20395581b2f22f6070527b484f7eb9bf3e81cd9783326124b157c5a5577520167b178ff0ef0f0aa8d319d9a6ceda6aa720dc12ede6287d995
SSDEEP

3072:rI8rOmCT1cjENRZ9wmAOIayGsOOJF4EISi/i4gG4npAjmA39QQIckJI:rNwT1nTZ9EaUn4yjK99QQd

Score

10^/10

berbew

Malware Config

Signatures

Berbew family
berbew

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
979bbc0ff9319e11bb4775e684ec526d7c9ac378d78b069e1f984cdca84d0a68N

Files

979bbc0ff9319e11bb4775e684ec526d7c9ac378d78b069e1f984cdca84d0a68N
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 132KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.pdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

.text Size: 27KB - Virtual size: 27KB

.bss Size: - Virtual size: 132KB

.data Size: 11KB - Virtual size: 11KB

.idata Size: 3KB - Virtual size: 3KB

.text Size: 512B - Virtual size: 4KB

.pdata Size: 4KB - Virtual size: 8KB

.rdata Size: 4KB - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.text Size: 5KB - Virtual size: 8KB

.rsrc Size: 2KB - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.text Size: 6KB - Virtual size: 8KB

.idata Size: 512B - Virtual size: 4KB

.idata Size: 512B - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 8KB

.text
Size: 27KB - Virtual size: 27KB

.bss
Size: - Virtual size: 132KB

.data
Size: 11KB - Virtual size: 11KB

.idata
Size: 3KB - Virtual size: 3KB

.text
Size: 512B - Virtual size: 4KB

.pdata
Size: 4KB - Virtual size: 8KB

.rdata
Size: 4KB - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.text
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 2KB - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.text
Size: 6KB - Virtual size: 8KB

.idata
Size: 512B - Virtual size: 4KB

.idata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 8KB