General
-
Target
a4009b9073f5fef29f0b7440385e2e4ad4e37cf73dad30b7330f2418302b030fN
-
Size
74KB
-
Sample
241109-nhqh5atcpp
-
MD5
c9e124d5ff7bccc893d6efb1dd819230
-
SHA1
aba1368ff72a4a2d13b65e87def59478f67af054
-
SHA256
a4009b9073f5fef29f0b7440385e2e4ad4e37cf73dad30b7330f2418302b030f
-
SHA512
e7b01dd553caa597dc8f8e43ecb198c2d47a83149fdd9179cb89b76d82a397f74028d8aab632284e56deb9320184f34e3758014cefe36d7ef876f6cec7b31742
-
SSDEEP
1536:3BEgjBz98etDMt71Ghbx03hls3YvVlUofa7cikE62SV2q3rSFM4DDvfI+6Cl0gt:xEaByzt7AhEbs3cz4HvfI+Sg
Static task
static1
Behavioral task
behavioral1
Sample
a4009b9073f5fef29f0b7440385e2e4ad4e37cf73dad30b7330f2418302b030fN.exe
Resource
win7-20241023-en
Behavioral task
behavioral2
Sample
a4009b9073f5fef29f0b7440385e2e4ad4e37cf73dad30b7330f2418302b030fN.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://f/wcmd.htm
http://f/ppslog.php
http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
a4009b9073f5fef29f0b7440385e2e4ad4e37cf73dad30b7330f2418302b030fN
-
Size
74KB
-
MD5
c9e124d5ff7bccc893d6efb1dd819230
-
SHA1
aba1368ff72a4a2d13b65e87def59478f67af054
-
SHA256
a4009b9073f5fef29f0b7440385e2e4ad4e37cf73dad30b7330f2418302b030f
-
SHA512
e7b01dd553caa597dc8f8e43ecb198c2d47a83149fdd9179cb89b76d82a397f74028d8aab632284e56deb9320184f34e3758014cefe36d7ef876f6cec7b31742
-
SSDEEP
1536:3BEgjBz98etDMt71Ghbx03hls3YvVlUofa7cikE62SV2q3rSFM4DDvfI+6Cl0gt:xEaByzt7AhEbs3cz4HvfI+Sg
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-