General

  • Target

    039aece7b2889681a602c0d62f9d0af3cdb8cf11a477e3beb5e616ef6b775bbfN

  • Size

    113KB

  • MD5

    9f540b31ed0853902e772bf3e99e6920

  • SHA1

    d96b5cd2cb8a018065df59ecdc38e82dbb09bceb

  • SHA256

    039aece7b2889681a602c0d62f9d0af3cdb8cf11a477e3beb5e616ef6b775bbf

  • SHA512

    a987b409ca54c55962ed9da33e075a56206b93030c9843633a7c887f46465badb1697e48fda0db9d1a902a9f3ac63f3443ea8766d3614619f6f04cae3be80797

  • SSDEEP

    3072:NW1rcw9OnMk7VvQHnEcK6MZNOuGkZFfFSebHWrH8wTW0:NW1vZI87otSeWrP

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://tat-neftbank.ru/kkq.php

http://tat-neftbank.ru/wcmd.htm

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 039aece7b2889681a602c0d62f9d0af3cdb8cf11a477e3beb5e616ef6b775bbfN
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections