General
-
Target
aafdf20127733147bdd2fff60391f1e352d2da5fe95414cd16bcd2b959c0ae2fN
-
Size
101KB
-
Sample
241107-e15akavkdz
-
MD5
b162aff64a914107da4ebd64a5431020
-
SHA1
c592f638b629edd7b3926665547f21f3626cec70
-
SHA256
aafdf20127733147bdd2fff60391f1e352d2da5fe95414cd16bcd2b959c0ae2f
-
SHA512
a7ea41486a80dbab1958597ae12b44c88f7076f1a5d51dae4dd513f3d670cc37d14a18d758dbb58d42b46ab043c516e218b9e2dff3dfee95beafab8a5df159a8
-
SSDEEP
3072:hNCwINYOFQmduXqbyu0sY7q5AnrHY4vDX:jV0SV853Anr44vDX
Static task
static1
Behavioral task
behavioral1
Sample
aafdf20127733147bdd2fff60391f1e352d2da5fe95414cd16bcd2b959c0ae2fN.exe
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
aafdf20127733147bdd2fff60391f1e352d2da5fe95414cd16bcd2b959c0ae2fN.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://tat-neftbank.ru/kkq.php
http://tat-neftbank.ru/wcmd.htm
Targets
-
-
Target
aafdf20127733147bdd2fff60391f1e352d2da5fe95414cd16bcd2b959c0ae2fN
-
Size
101KB
-
MD5
b162aff64a914107da4ebd64a5431020
-
SHA1
c592f638b629edd7b3926665547f21f3626cec70
-
SHA256
aafdf20127733147bdd2fff60391f1e352d2da5fe95414cd16bcd2b959c0ae2f
-
SHA512
a7ea41486a80dbab1958597ae12b44c88f7076f1a5d51dae4dd513f3d670cc37d14a18d758dbb58d42b46ab043c516e218b9e2dff3dfee95beafab8a5df159a8
-
SSDEEP
3072:hNCwINYOFQmduXqbyu0sY7q5AnrHY4vDX:jV0SV853Anr44vDX
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-