General

  • Target

    e8925d83bbe3293522d5c229cd9c5d296778cb5cab4308f8a7a850948d0cff49N

  • Size

    136KB

  • MD5

    757829c86bd0aebb00d5d8bfb7b01900

  • SHA1

    7989f45e939ae04578c4dbe1c3b3748a0c58ccff

  • SHA256

    e8925d83bbe3293522d5c229cd9c5d296778cb5cab4308f8a7a850948d0cff49

  • SHA512

    dbf5522efee2ef14778bba41288a0e5ef81305644367b5f24eaca31b5ba3a96c3c896b047221599d8a9a9f9b9a31f3f16465623c7cc64c9cac647aa3c5b15281

  • SSDEEP

    3072:+4iNGH7zH8i351Cu1QzC6O8vzdH13+EE+RaZ6r+GDZnBc:+nGH7zH8ifbqbO8vzd5IF6rfBBc

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://f/wcmd.htm

http://f/ppslog.php

http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e8925d83bbe3293522d5c229cd9c5d296778cb5cab4308f8a7a850948d0cff49N
    .exe windows:1 windows x86 arch:x86

    26babd76bbb7f9c516a338b0601b4c9f


    Headers

    Imports

    Sections