General
-
Target
e891530fa00c1fb050c3980ebd636b5e9a9747dab58f570383f71f08609e86ccN
-
Size
144KB
-
Sample
241109-le1hta1mcx
-
MD5
6e087f39aa026ad805e862eb46bce680
-
SHA1
2b407d1b444cd8028572492c234286340f2dde0b
-
SHA256
e891530fa00c1fb050c3980ebd636b5e9a9747dab58f570383f71f08609e86cc
-
SHA512
1c309c0d1c16951083ac5c99b2c800721b59dd9360a7fa53414fbf54ba49cb381890b3d838551a334cc5ad3601b25aa58c0b5ce728e6ad78c5a620ebc89e6e4f
-
SSDEEP
3072:NA79YFQHyd+vHQNpNezGYJpD9r8XxrYnQg4sI+:kuGf/QN38GyZ6Yu+
Static task
static1
Behavioral task
behavioral1
Sample
e891530fa00c1fb050c3980ebd636b5e9a9747dab58f570383f71f08609e86ccN.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
e891530fa00c1fb050c3980ebd636b5e9a9747dab58f570383f71f08609e86ccN.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://f/wcmd.htm
http://f/ppslog.php
http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
e891530fa00c1fb050c3980ebd636b5e9a9747dab58f570383f71f08609e86ccN
-
Size
144KB
-
MD5
6e087f39aa026ad805e862eb46bce680
-
SHA1
2b407d1b444cd8028572492c234286340f2dde0b
-
SHA256
e891530fa00c1fb050c3980ebd636b5e9a9747dab58f570383f71f08609e86cc
-
SHA512
1c309c0d1c16951083ac5c99b2c800721b59dd9360a7fa53414fbf54ba49cb381890b3d838551a334cc5ad3601b25aa58c0b5ce728e6ad78c5a620ebc89e6e4f
-
SSDEEP
3072:NA79YFQHyd+vHQNpNezGYJpD9r8XxrYnQg4sI+:kuGf/QN38GyZ6Yu+
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-