General

  • Target

    dc7a3719e45e2fe660c7e73b7b95415de52d530a03d21a8e59e0d85a0b4ec46bN

  • Size

    276KB

  • MD5

    a6cb55108fd0b7a21212aa2aab889cc0

  • SHA1

    8b14656295b84b5f703633dbba65ddcbc81399ee

  • SHA256

    dc7a3719e45e2fe660c7e73b7b95415de52d530a03d21a8e59e0d85a0b4ec46b

  • SHA512

    85c78a9c6895e27228ec727593f07c2e472f9f3e98fc7914df617d2c16eb9fd5955064d9a40b3ce67387877e2171209c6c210c0763dfa683794d50a60c751b53

  • SSDEEP

    6144:myFJjwy/mKkGf1kJdZMGXF5ahdt3rM8d7TtLa:fwy/mKkmAXFWtJ9O

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://f/wcmd.htm

http://f/ppslog.php

http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • dc7a3719e45e2fe660c7e73b7b95415de52d530a03d21a8e59e0d85a0b4ec46bN
    .exe windows:1 windows x86 arch:x86

    26babd76bbb7f9c516a338b0601b4c9f


    Headers

    Imports

    Sections