General
-
Target
1a83dcd7dedd905edd4481cf1d12a80eb6d5aebdcaee0bdaf6491371b58936b6N
-
Size
72KB
-
Sample
241109-plpaxavakl
-
MD5
6dd826ae9554ffe82cb395a47bda1840
-
SHA1
4cf8ea3c41384fedd14f6c6b02a0ee572178544b
-
SHA256
1a83dcd7dedd905edd4481cf1d12a80eb6d5aebdcaee0bdaf6491371b58936b6
-
SHA512
6f066beb8d7d77ff3be6b74f7acc6ca9f3edec9d64799f4b6458e7267653b81a48672e34b69253b75d00436ff8a44a476745e9eedde626b8661d80e996ee2cb6
-
SSDEEP
1536:7+Ur9Es67lAzcdFHAKLRkgE9Ku9zPgUN3QivEtA:SaQDWtzPgU5QJA
Static task
static1
Behavioral task
behavioral1
Sample
1a83dcd7dedd905edd4481cf1d12a80eb6d5aebdcaee0bdaf6491371b58936b6N.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
1a83dcd7dedd905edd4481cf1d12a80eb6d5aebdcaee0bdaf6491371b58936b6N.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://tat-neftbank.ru/kkq.php
http://tat-neftbank.ru/wcmd.htm
Targets
-
-
Target
1a83dcd7dedd905edd4481cf1d12a80eb6d5aebdcaee0bdaf6491371b58936b6N
-
Size
72KB
-
MD5
6dd826ae9554ffe82cb395a47bda1840
-
SHA1
4cf8ea3c41384fedd14f6c6b02a0ee572178544b
-
SHA256
1a83dcd7dedd905edd4481cf1d12a80eb6d5aebdcaee0bdaf6491371b58936b6
-
SHA512
6f066beb8d7d77ff3be6b74f7acc6ca9f3edec9d64799f4b6458e7267653b81a48672e34b69253b75d00436ff8a44a476745e9eedde626b8661d80e996ee2cb6
-
SSDEEP
1536:7+Ur9Es67lAzcdFHAKLRkgE9Ku9zPgUN3QivEtA:SaQDWtzPgU5QJA
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-