General

  • Target

    15bef4e1bdea3fd4a3921dbd1f398ff49332594f6c60bbc599c57197703d3209N

  • Size

    161KB

  • MD5

    7104c6add0e8241daabf324965230190

  • SHA1

    0ca1e92dee8c340f91451c775617349c0a20dc83

  • SHA256

    15bef4e1bdea3fd4a3921dbd1f398ff49332594f6c60bbc599c57197703d3209

  • SHA512

    4e90eed1020f21df4e9b82dc0c9b72abfd1329c52e18ce918d4efe424983d6cc3e1d9b706babf1782dab44e5ea12b9f5a88223a459efa9959cefdc8b086ba6c4

  • SSDEEP

    3072:6qigfV9mxRT+89qq2L4k0VwtCJXeex7rrIRZK8K8/kvV:6EN94+89d20k0VwtmeetrIyRV

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://f/wcmd.htm

http://f/ppslog.php

http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 15bef4e1bdea3fd4a3921dbd1f398ff49332594f6c60bbc599c57197703d3209N
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections