General
-
Target
102faa3873fbe2a3f18ec84a646fa8794736cff5469d6ff7b519f12b97295901N.exe
-
Size
198KB
-
Sample
241111-pjtgvasneq
-
MD5
89c2ebc5cc3a5a02fa894a7525c04b45
-
SHA1
1ae420d1ca0da56cce1876b884e70b552525a6b5
-
SHA256
4998e0cca1eb2419473f9b95da533a5d04d00a2d48670b2ec83daaa42feb2abf
-
SHA512
aaf01c2cfaadb6b439a508928d516dd4e112ad7e505f4c04521ac73e5aa37891440515c31de4ec89fe6ffee525755f0a4299ac7651a2378e2ce7b975bee49ab6
-
SSDEEP
3072:I7K6463FiR75p5Mc6iL4Sp+7H7wWkqrifbdB7dYk1Bx8DpsV6OzrCIwf5:qmRMNiLBOHhkym/89bKwh
Static task
static1
Behavioral task
behavioral1
Sample
102faa3873fbe2a3f18ec84a646fa8794736cff5469d6ff7b519f12b97295901N.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
102faa3873fbe2a3f18ec84a646fa8794736cff5469d6ff7b519f12b97295901N.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://f/wcmd.htm
http://f/ppslog.php
http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
102faa3873fbe2a3f18ec84a646fa8794736cff5469d6ff7b519f12b97295901N.exe
-
Size
198KB
-
MD5
89c2ebc5cc3a5a02fa894a7525c04b45
-
SHA1
1ae420d1ca0da56cce1876b884e70b552525a6b5
-
SHA256
4998e0cca1eb2419473f9b95da533a5d04d00a2d48670b2ec83daaa42feb2abf
-
SHA512
aaf01c2cfaadb6b439a508928d516dd4e112ad7e505f4c04521ac73e5aa37891440515c31de4ec89fe6ffee525755f0a4299ac7651a2378e2ce7b975bee49ab6
-
SSDEEP
3072:I7K6463FiR75p5Mc6iL4Sp+7H7wWkqrifbdB7dYk1Bx8DpsV6OzrCIwf5:qmRMNiLBOHhkym/89bKwh
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-