General
-
Target
36eed815c882d16008f43d952571603b73bfa32630503323e611ed9600067abeN
-
Size
272KB
-
Sample
241109-kb39vs1ema
-
MD5
bd08964e5f72f2dd7812882af2318250
-
SHA1
cd20a366921a74a4885cb358ba319c11b822e108
-
SHA256
36eed815c882d16008f43d952571603b73bfa32630503323e611ed9600067abe
-
SHA512
553802ae229bf36da46f3b8f007e9d5508d91ef13dc3601861e812d415fc0e1965ab17fd8e4f3d0a8c4a0b9df05706a60bc90b29cfd36bef95bf12a01919463b
-
SSDEEP
6144:P3wlHkv3BByvZ6Mxv5Rar3O6B9fZSLhZmzbByvZ6Mxv5R:olHWxByvNv54B9f01ZmHByvNv5
Behavioral task
behavioral1
Sample
36eed815c882d16008f43d952571603b73bfa32630503323e611ed9600067abeN.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
36eed815c882d16008f43d952571603b73bfa32630503323e611ed9600067abeN.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://viruslist.com/wcmd.txt
http://viruslist.com/ppslog.php
http://viruslist.com/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
36eed815c882d16008f43d952571603b73bfa32630503323e611ed9600067abeN
-
Size
272KB
-
MD5
bd08964e5f72f2dd7812882af2318250
-
SHA1
cd20a366921a74a4885cb358ba319c11b822e108
-
SHA256
36eed815c882d16008f43d952571603b73bfa32630503323e611ed9600067abe
-
SHA512
553802ae229bf36da46f3b8f007e9d5508d91ef13dc3601861e812d415fc0e1965ab17fd8e4f3d0a8c4a0b9df05706a60bc90b29cfd36bef95bf12a01919463b
-
SSDEEP
6144:P3wlHkv3BByvZ6Mxv5Rar3O6B9fZSLhZmzbByvZ6Mxv5R:olHWxByvNv54B9f01ZmHByvNv5
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-