General

  • Target

    8f8856c92bd4263ca1ba38911461ab46c6266f1efeaec8d779089e7af12a53e8N

  • Size

    112KB

  • MD5

    e82f67291ea0bd758658017cd1a95110

  • SHA1

    b281df9a176de6b758623581811e96d148cbd54d

  • SHA256

    8f8856c92bd4263ca1ba38911461ab46c6266f1efeaec8d779089e7af12a53e8

  • SHA512

    27712c514ba531b5e14a5c28ecb1ce317bec0c90ec554582a1fc9b35bf2f9d45a882653dffd7e2d9d88751e137bc3f02b5a0b5d05cae5b765ca29a3ed90ebe96

  • SSDEEP

    1536:/7fEKxrbJb7SQvIFlQFBeW93sxa5aTglqp4X9ikRynlypv8LIuCseNIQ:/7d/7/vIunyx9wqa9+lc802eSQ

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://f/wcmd.htm

http://f/ppslog.php

http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 8f8856c92bd4263ca1ba38911461ab46c6266f1efeaec8d779089e7af12a53e8N
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections