General
-
Target
c58edd6b377078f1f7b9622d0ce563205b9b7c2a144c5bd5428ce3ec814d4443
-
Size
96KB
-
Sample
241107-erj82axnhr
-
MD5
17b7691c3c3446df797039b7312fb11b
-
SHA1
fee6bf1280f96dc36a09eb7f5004a76c9d855782
-
SHA256
c58edd6b377078f1f7b9622d0ce563205b9b7c2a144c5bd5428ce3ec814d4443
-
SHA512
041715ee5b853234894b0a25a06acd492abe1d1c9de9edb4dbca609fc967611afe75faf3fd951354a7d9a722e555bfa03005648694d6f1769bea54fa22be73d1
-
SSDEEP
1536:UkpDU2/TkoUt+yhVTQ0AJOJg4DjxvAosVJxpeEYc+duV9jojTIvjrH:UmDU2LkobyhVE0CyjxvA3rxMpbd69jcs
Static task
static1
Behavioral task
behavioral1
Sample
c58edd6b377078f1f7b9622d0ce563205b9b7c2a144c5bd5428ce3ec814d4443.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
c58edd6b377078f1f7b9622d0ce563205b9b7c2a144c5bd5428ce3ec814d4443.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://f/wcmd.htm
http://f/ppslog.php
http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
c58edd6b377078f1f7b9622d0ce563205b9b7c2a144c5bd5428ce3ec814d4443
-
Size
96KB
-
MD5
17b7691c3c3446df797039b7312fb11b
-
SHA1
fee6bf1280f96dc36a09eb7f5004a76c9d855782
-
SHA256
c58edd6b377078f1f7b9622d0ce563205b9b7c2a144c5bd5428ce3ec814d4443
-
SHA512
041715ee5b853234894b0a25a06acd492abe1d1c9de9edb4dbca609fc967611afe75faf3fd951354a7d9a722e555bfa03005648694d6f1769bea54fa22be73d1
-
SSDEEP
1536:UkpDU2/TkoUt+yhVTQ0AJOJg4DjxvAosVJxpeEYc+duV9jojTIvjrH:UmDU2LkobyhVE0CyjxvA3rxMpbd69jcs
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-