General
-
Target
bba206356dd13645d50ac48bf07b8b1273900a41f6054c1fe31acaccf89fd755N.exe
-
Size
45KB
-
Sample
241111-myeacsycjm
-
MD5
65f87dd029ca3cb62931264044e1ed62
-
SHA1
76aa3cd23c7e274a8895e89e3f99d54134a7919d
-
SHA256
2adc3349e8252dc787c2f463826764e1c2a9619527de71163936a9d44af27b10
-
SHA512
129fc97e4bb037c3b1cafa05469a357c0f122c09359e5f276ea2c8bf7dffb05ad2c9ca85511d07f812787620038abc7d55467d5d43d661388623e847e967e2d9
-
SSDEEP
768:8jvpCYAuGYVWcfmYiFfYpLKjpXRmTvZmJuab8zS2onuXTjpobOm/1H5txJ:8jvpNAunVdHOuLKjFRmTvZmrb8zdCOMH
Static task
static1
Behavioral task
behavioral1
Sample
bba206356dd13645d50ac48bf07b8b1273900a41f6054c1fe31acaccf89fd755N.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
bba206356dd13645d50ac48bf07b8b1273900a41f6054c1fe31acaccf89fd755N.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://tat-neftbank.ru/kkq.php
http://tat-neftbank.ru/wcmd.htm
Targets
-
-
Target
bba206356dd13645d50ac48bf07b8b1273900a41f6054c1fe31acaccf89fd755N.exe
-
Size
45KB
-
MD5
65f87dd029ca3cb62931264044e1ed62
-
SHA1
76aa3cd23c7e274a8895e89e3f99d54134a7919d
-
SHA256
2adc3349e8252dc787c2f463826764e1c2a9619527de71163936a9d44af27b10
-
SHA512
129fc97e4bb037c3b1cafa05469a357c0f122c09359e5f276ea2c8bf7dffb05ad2c9ca85511d07f812787620038abc7d55467d5d43d661388623e847e967e2d9
-
SSDEEP
768:8jvpCYAuGYVWcfmYiFfYpLKjpXRmTvZmJuab8zS2onuXTjpobOm/1H5txJ:8jvpNAunVdHOuLKjFRmTvZmrb8zdCOMH
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-