General
-
Target
aea1a19f423420b32050e169d3eddc0a8a3c2944acfc64e89cba62e57e4c8893N
-
Size
71KB
-
Sample
241107-kfer3a1qfn
-
MD5
510eb0bdc1ec8e61db544e1d34d36090
-
SHA1
32002c8b6c7f7a16135be98fb0d04ce74f8782fa
-
SHA256
aea1a19f423420b32050e169d3eddc0a8a3c2944acfc64e89cba62e57e4c8893
-
SHA512
025f406df30b4d53d7d005bda3d824d0ad60a9e76821f04a708a8fdb6dc237c78b83c8958dd6838c19cd231acf9f318613d265f2cf772f6e8bf560665e90508d
-
SSDEEP
1536:9A8T75/A6IlrjuZ41miq1bDDAF8xFQkJxoRQGK1P+ATT:K854ByZ8mt5Du+mSeeNP+A3
Static task
static1
Behavioral task
behavioral1
Sample
aea1a19f423420b32050e169d3eddc0a8a3c2944acfc64e89cba62e57e4c8893N.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
aea1a19f423420b32050e169d3eddc0a8a3c2944acfc64e89cba62e57e4c8893N.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://viruslist.com/wcmd.txt
http://viruslist.com/ppslog.php
http://viruslist.com/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
aea1a19f423420b32050e169d3eddc0a8a3c2944acfc64e89cba62e57e4c8893N
-
Size
71KB
-
MD5
510eb0bdc1ec8e61db544e1d34d36090
-
SHA1
32002c8b6c7f7a16135be98fb0d04ce74f8782fa
-
SHA256
aea1a19f423420b32050e169d3eddc0a8a3c2944acfc64e89cba62e57e4c8893
-
SHA512
025f406df30b4d53d7d005bda3d824d0ad60a9e76821f04a708a8fdb6dc237c78b83c8958dd6838c19cd231acf9f318613d265f2cf772f6e8bf560665e90508d
-
SSDEEP
1536:9A8T75/A6IlrjuZ41miq1bDDAF8xFQkJxoRQGK1P+ATT:K854ByZ8mt5Du+mSeeNP+A3
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-