General

  • Target

    375be81201f4d9e0c01147ddac8f41afe0214d90566452fd24f60a1bd107f8c7

  • Size

    128KB

  • MD5

    ca7b8b85dc671a61ee4a6c5605701239

  • SHA1

    21e76526fa3e361caf045f6992d2c64c539e1810

  • SHA256

    375be81201f4d9e0c01147ddac8f41afe0214d90566452fd24f60a1bd107f8c7

  • SHA512

    97bb6f237aba256bd4952bef55607aff198abda0fb0d92113e9b2bd0eddbc7047583e4eb76f27449d4d3f2f61927d7ab81df20c6cac79744a6a83e640feb4a2e

  • SSDEEP

    1536:iB01xWpZTkL8SlK53btb5wirYkwFxfp8w547wBtFQoXa+dJnEBctOPpB:2jRkLyL5wclkSw5Iw3FQo7fnEBctcp

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://f/wcmd.htm

http://f/ppslog.php

http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 375be81201f4d9e0c01147ddac8f41afe0214d90566452fd24f60a1bd107f8c7
    .exe windows:1 windows x86 arch:x86

    26babd76bbb7f9c516a338b0601b4c9f


    Headers

    Imports

    Sections