General
-
Target
9feaca9a0d676b24e791a19d510044fc3388d11926aa6e01b1462fe2d4500a6eN
-
Size
74KB
-
Sample
241112-q1kfyaxjem
-
MD5
b04a61e41183bae52e7c381e46893e10
-
SHA1
a07b3a8e16ea1a920e039c2388b8658684a88d6e
-
SHA256
9feaca9a0d676b24e791a19d510044fc3388d11926aa6e01b1462fe2d4500a6e
-
SHA512
a49fd2a4cc0b437296be98ba966d4da203ba40bf00152bb0b8ba403bf682718e25f538b29a6dffa42308fa1982058d6a821aa91c124e546ca88397b8f1f4adb1
-
SSDEEP
1536:HBK64QqDJhUcNOuubGi6nuehf4PvPHIxHoQegB:vW7OuubGi6nuehAPvPozeS
Static task
static1
Behavioral task
behavioral1
Sample
9feaca9a0d676b24e791a19d510044fc3388d11926aa6e01b1462fe2d4500a6eN.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
9feaca9a0d676b24e791a19d510044fc3388d11926aa6e01b1462fe2d4500a6eN.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://f/wcmd.htm
http://f/ppslog.php
http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
9feaca9a0d676b24e791a19d510044fc3388d11926aa6e01b1462fe2d4500a6eN
-
Size
74KB
-
MD5
b04a61e41183bae52e7c381e46893e10
-
SHA1
a07b3a8e16ea1a920e039c2388b8658684a88d6e
-
SHA256
9feaca9a0d676b24e791a19d510044fc3388d11926aa6e01b1462fe2d4500a6e
-
SHA512
a49fd2a4cc0b437296be98ba966d4da203ba40bf00152bb0b8ba403bf682718e25f538b29a6dffa42308fa1982058d6a821aa91c124e546ca88397b8f1f4adb1
-
SSDEEP
1536:HBK64QqDJhUcNOuubGi6nuehf4PvPHIxHoQegB:vW7OuubGi6nuehAPvPozeS
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-