General
-
Target
ac0915968526125d92018c99eceb00536fcca5852cfe55ff9bfac3352e9f93bbN.exe
-
Size
96KB
-
Sample
241112-nyplrs1lew
-
MD5
cf7cd483c53dd47243d604b5dbe49d6f
-
SHA1
52c787b3836585ca9b0e031d27a9abe4d179ecfd
-
SHA256
19ab9bf0600a9a2e41569ed082f3500fc904f23f25ad2661c3e06b06c78d86fe
-
SHA512
30b0981990e5ab3bc9cc8d7eec70cfdffb2d8fc8da35552cebca14a022e4785a25960d9504aac02e1b140716001b146d951b58ef387abec0df5c7da057ec2da5
-
SSDEEP
3072:N5pl7b2fW+7Mjtw/TZe+9+HrtG9MW3+3l2S:N5pZaboRtGDuMS
Static task
static1
Behavioral task
behavioral1
Sample
ac0915968526125d92018c99eceb00536fcca5852cfe55ff9bfac3352e9f93bbN.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
ac0915968526125d92018c99eceb00536fcca5852cfe55ff9bfac3352e9f93bbN.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://viruslist.com/wcmd.txt
http://viruslist.com/ppslog.php
http://viruslist.com/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
ac0915968526125d92018c99eceb00536fcca5852cfe55ff9bfac3352e9f93bbN.exe
-
Size
96KB
-
MD5
cf7cd483c53dd47243d604b5dbe49d6f
-
SHA1
52c787b3836585ca9b0e031d27a9abe4d179ecfd
-
SHA256
19ab9bf0600a9a2e41569ed082f3500fc904f23f25ad2661c3e06b06c78d86fe
-
SHA512
30b0981990e5ab3bc9cc8d7eec70cfdffb2d8fc8da35552cebca14a022e4785a25960d9504aac02e1b140716001b146d951b58ef387abec0df5c7da057ec2da5
-
SSDEEP
3072:N5pl7b2fW+7Mjtw/TZe+9+HrtG9MW3+3l2S:N5pZaboRtGDuMS
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-