General
-
Target
b0a4dcf90311fc6e77c6c9ee91af93cb9136065814a7888018c9818a209c9544
-
Size
256KB
-
Sample
241113-jtw3tsxhle
-
MD5
a1e08162950260b8a5636c3231b94420
-
SHA1
02c657867f4cdcb384098fa4890624c4f37f15df
-
SHA256
b0a4dcf90311fc6e77c6c9ee91af93cb9136065814a7888018c9818a209c9544
-
SHA512
c554173a611afaf793bd82daa158013829c4b257e8f59a3c2860de0b65ed149efc27ccbc92f0453591f648c4f368b5fc6385c5e79695949f7db59a00ce987949
-
SSDEEP
6144:GCkFcHu7dETLp103ETiZ0moGP/2dga1mcywM:GRm7pScXwuR1mKM
Behavioral task
behavioral1
Sample
b0a4dcf90311fc6e77c6c9ee91af93cb9136065814a7888018c9818a209c9544.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
b0a4dcf90311fc6e77c6c9ee91af93cb9136065814a7888018c9818a209c9544.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://f/wcmd.htm
http://f/ppslog.php
http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
b0a4dcf90311fc6e77c6c9ee91af93cb9136065814a7888018c9818a209c9544
-
Size
256KB
-
MD5
a1e08162950260b8a5636c3231b94420
-
SHA1
02c657867f4cdcb384098fa4890624c4f37f15df
-
SHA256
b0a4dcf90311fc6e77c6c9ee91af93cb9136065814a7888018c9818a209c9544
-
SHA512
c554173a611afaf793bd82daa158013829c4b257e8f59a3c2860de0b65ed149efc27ccbc92f0453591f648c4f368b5fc6385c5e79695949f7db59a00ce987949
-
SSDEEP
6144:GCkFcHu7dETLp103ETiZ0moGP/2dga1mcywM:GRm7pScXwuR1mKM
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-