General
-
Target
ff5e19337ea7001080b5a9343bb7badedb2645be8ccbba00541a44938723bd14.exe
-
Size
89KB
-
Sample
241112-rv5qcsxpcj
-
MD5
6c3c16182a4d11acf216847fd2d1b47b
-
SHA1
e63d6f4d25de4b4d6f20912abd800b5ecbe02770
-
SHA256
ff5e19337ea7001080b5a9343bb7badedb2645be8ccbba00541a44938723bd14
-
SHA512
ef33867ec9e2809318ca83120682faafc2db004c9325a0e142071d12177eb7e54f1bb004d450c12d6924194c0a221431588a80573bf639e69de228799341bc04
-
SSDEEP
1536:/hCXy5udl6pXQtaKYQXaz452DPZo4YuDDGc11lExkg8F8:/hmKztGzaz4UDKc11lakgw8
Static task
static1
Behavioral task
behavioral1
Sample
ff5e19337ea7001080b5a9343bb7badedb2645be8ccbba00541a44938723bd14.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
ff5e19337ea7001080b5a9343bb7badedb2645be8ccbba00541a44938723bd14.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://f/wcmd.htm
http://f/ppslog.php
http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
ff5e19337ea7001080b5a9343bb7badedb2645be8ccbba00541a44938723bd14.exe
-
Size
89KB
-
MD5
6c3c16182a4d11acf216847fd2d1b47b
-
SHA1
e63d6f4d25de4b4d6f20912abd800b5ecbe02770
-
SHA256
ff5e19337ea7001080b5a9343bb7badedb2645be8ccbba00541a44938723bd14
-
SHA512
ef33867ec9e2809318ca83120682faafc2db004c9325a0e142071d12177eb7e54f1bb004d450c12d6924194c0a221431588a80573bf639e69de228799341bc04
-
SSDEEP
1536:/hCXy5udl6pXQtaKYQXaz452DPZo4YuDDGc11lExkg8F8:/hmKztGzaz4UDKc11lakgw8
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-