General
-
Target
2c660a453b33c46b2280e7cb4270e63a936eae13d4dd35fb1440381aec2a7596N
-
Size
192KB
-
Sample
241109-mdm2rsvqfn
-
MD5
9c2500e2a07504f69e01cd63b80b8b70
-
SHA1
97aac8d80c81e205a0a1daba9b69da4c10cd10bd
-
SHA256
2c660a453b33c46b2280e7cb4270e63a936eae13d4dd35fb1440381aec2a7596
-
SHA512
0e6bb2fbd146ee0982edfce12f902106a950ad62f88bbd8e09fcf54d0f3e6b1f1da43cb2ab099649851ee6409365c3512e715e38bce1e372ea07e84371dc59e8
-
SSDEEP
1536:1L8i9Rq/vIayOeHoOk6Aonda/YFNhBLOnouy8O6Nuf51TQmQM22OwJwTa58nFwWd:h8iMSOeIv0agFNhdOoutkTy27zU
Behavioral task
behavioral1
Sample
2c660a453b33c46b2280e7cb4270e63a936eae13d4dd35fb1440381aec2a7596N.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
2c660a453b33c46b2280e7cb4270e63a936eae13d4dd35fb1440381aec2a7596N.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://f/wcmd.htm
http://f/ppslog.php
http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
2c660a453b33c46b2280e7cb4270e63a936eae13d4dd35fb1440381aec2a7596N
-
Size
192KB
-
MD5
9c2500e2a07504f69e01cd63b80b8b70
-
SHA1
97aac8d80c81e205a0a1daba9b69da4c10cd10bd
-
SHA256
2c660a453b33c46b2280e7cb4270e63a936eae13d4dd35fb1440381aec2a7596
-
SHA512
0e6bb2fbd146ee0982edfce12f902106a950ad62f88bbd8e09fcf54d0f3e6b1f1da43cb2ab099649851ee6409365c3512e715e38bce1e372ea07e84371dc59e8
-
SSDEEP
1536:1L8i9Rq/vIayOeHoOk6Aonda/YFNhBLOnouy8O6Nuf51TQmQM22OwJwTa58nFwWd:h8iMSOeIv0agFNhdOoutkTy27zU
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-