General
-
Target
d6e2eb091fb6aa07b82baa582d704f58ffebce1c683995ed047a74e712dd0f58N
-
Size
93KB
-
Sample
241110-t3q82stneq
-
MD5
397378ec14cbb003472559502caa8f30
-
SHA1
e50bc85e3d1db2778b8b6366a0ddaaf4c5bfa9f4
-
SHA256
d6e2eb091fb6aa07b82baa582d704f58ffebce1c683995ed047a74e712dd0f58
-
SHA512
ca28f0c17c281fb70cbcbaba2ec0734869b51cebfc6603760b2c116ea13aad679c0f44aa0e8fb452ceab00b004c4de44ed3ab4a3cea3266c46aeee928d6a6dc9
-
SSDEEP
1536:wCMlRSHixkzT1CQJnmZ6f8EwPT8C21eitwTTa5EMF1dGHGfGVIG+k8Tfljiwg58:2SHiyP1CQurK1lJFrGXVz+lBY58
Static task
static1
Behavioral task
behavioral1
Sample
d6e2eb091fb6aa07b82baa582d704f58ffebce1c683995ed047a74e712dd0f58N.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
d6e2eb091fb6aa07b82baa582d704f58ffebce1c683995ed047a74e712dd0f58N.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://f/wcmd.htm
http://f/ppslog.php
http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
d6e2eb091fb6aa07b82baa582d704f58ffebce1c683995ed047a74e712dd0f58N
-
Size
93KB
-
MD5
397378ec14cbb003472559502caa8f30
-
SHA1
e50bc85e3d1db2778b8b6366a0ddaaf4c5bfa9f4
-
SHA256
d6e2eb091fb6aa07b82baa582d704f58ffebce1c683995ed047a74e712dd0f58
-
SHA512
ca28f0c17c281fb70cbcbaba2ec0734869b51cebfc6603760b2c116ea13aad679c0f44aa0e8fb452ceab00b004c4de44ed3ab4a3cea3266c46aeee928d6a6dc9
-
SSDEEP
1536:wCMlRSHixkzT1CQJnmZ6f8EwPT8C21eitwTTa5EMF1dGHGfGVIG+k8Tfljiwg58:2SHiyP1CQurK1lJFrGXVz+lBY58
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-