General
-
Target
20acb567abdab7f6afe8e8f64b8c8441c8c1e94de9ecd0d70fc350556a43db31N
-
Size
94KB
-
Sample
241112-n2jvpa1mb1
-
MD5
c1393cdd65b922c6f367d2696fc673c0
-
SHA1
925481cc5acae895257bac806d04ede5bcbdd96e
-
SHA256
20acb567abdab7f6afe8e8f64b8c8441c8c1e94de9ecd0d70fc350556a43db31
-
SHA512
8101beef1594dbb86b88f5580b74e55648dc86379e941965d5390f246f3507aef953b0f899cc0ac65f4aaaf72f8439434648f437e309147699dbdca452ca76b3
-
SSDEEP
1536:9lwrcFmM8qlzxrJVsK34Du4dM50R+SrRQDqRfRa9HprmRfRZ:9lwrEmtwzxrJmKIDD3NeDq5wkpv
Static task
static1
Behavioral task
behavioral1
Sample
20acb567abdab7f6afe8e8f64b8c8441c8c1e94de9ecd0d70fc350556a43db31N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
20acb567abdab7f6afe8e8f64b8c8441c8c1e94de9ecd0d70fc350556a43db31N.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://viruslist.com/wcmd.txt
http://viruslist.com/ppslog.php
http://viruslist.com/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
20acb567abdab7f6afe8e8f64b8c8441c8c1e94de9ecd0d70fc350556a43db31N
-
Size
94KB
-
MD5
c1393cdd65b922c6f367d2696fc673c0
-
SHA1
925481cc5acae895257bac806d04ede5bcbdd96e
-
SHA256
20acb567abdab7f6afe8e8f64b8c8441c8c1e94de9ecd0d70fc350556a43db31
-
SHA512
8101beef1594dbb86b88f5580b74e55648dc86379e941965d5390f246f3507aef953b0f899cc0ac65f4aaaf72f8439434648f437e309147699dbdca452ca76b3
-
SSDEEP
1536:9lwrcFmM8qlzxrJVsK34Du4dM50R+SrRQDqRfRa9HprmRfRZ:9lwrEmtwzxrJmKIDD3NeDq5wkpv
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-