General
-
Target
0d610623dccf9557f242e6d38ed5f64233d41367fa8545ec5f57ff3958f6ec65N
-
Size
448KB
-
Sample
241107-f1qmvawhql
-
MD5
e6077aa5d21b61adbbe2cf6249a1b6c0
-
SHA1
6c4cca57e196fa245e1947d65ecd6e47088380fd
-
SHA256
0d610623dccf9557f242e6d38ed5f64233d41367fa8545ec5f57ff3958f6ec65
-
SHA512
14c375835f44874e49250b73600751a65e4a02514bd8a322fb0f2e6e765017cd7b6f72b2d546ffba2c292fdef4a1614f16a79c544cdfde5e9b8fac4abe7cb9bf
-
SSDEEP
6144:wXSpltUvw8cgq8SeNpgdyuH1lZfRo0V8JcgE+ezpg1xrlo9:CS/Kvrc787g7/VycgE81lm
Static task
static1
Behavioral task
behavioral1
Sample
0d610623dccf9557f242e6d38ed5f64233d41367fa8545ec5f57ff3958f6ec65N.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
0d610623dccf9557f242e6d38ed5f64233d41367fa8545ec5f57ff3958f6ec65N.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://viruslist.com/wcmd.txt
http://viruslist.com/ppslog.php
http://viruslist.com/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
0d610623dccf9557f242e6d38ed5f64233d41367fa8545ec5f57ff3958f6ec65N
-
Size
448KB
-
MD5
e6077aa5d21b61adbbe2cf6249a1b6c0
-
SHA1
6c4cca57e196fa245e1947d65ecd6e47088380fd
-
SHA256
0d610623dccf9557f242e6d38ed5f64233d41367fa8545ec5f57ff3958f6ec65
-
SHA512
14c375835f44874e49250b73600751a65e4a02514bd8a322fb0f2e6e765017cd7b6f72b2d546ffba2c292fdef4a1614f16a79c544cdfde5e9b8fac4abe7cb9bf
-
SSDEEP
6144:wXSpltUvw8cgq8SeNpgdyuH1lZfRo0V8JcgE+ezpg1xrlo9:CS/Kvrc787g7/VycgE81lm
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-