berbew | b48dc97401ac45cb34790c632fc28856a454b06a76f132349f5b618e3f073335 | Triage

Sharing

General

Target

b48dc97401ac45cb34790c632fc28856a454b06a76f132349f5b618e3f073335
Size

208KB
MD5

ed56e64d60f07cb44e4f7d8ed0092c21
SHA1

21805413b500606fdeab478276d27ebd764619de
SHA256

b48dc97401ac45cb34790c632fc28856a454b06a76f132349f5b618e3f073335
SHA512

af98fc661c3e6346acf745619829ceb82fc353da4e76a63876d3d247ae09dd9aa8a36745498275196c47c7ab960560c2d1a1d769618db37104d2e99c4b46cef6
SSDEEP

6144:CtQ2t6hBfXDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55KmC:6t+YChtMtkM71r1MSXqPix55Kx

Score

10^/10

berbew

Malware Config

Signatures

Berbew family
berbew

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b48dc97401ac45cb34790c632fc28856a454b06a76f132349f5b618e3f073335

Files

b48dc97401ac45cb34790c632fc28856a454b06a76f132349f5b618e3f073335
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 122KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ajelhf
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ