berbew | 40971ed736218d1b68321d633d1c1060461be6d035ae73a74c777dce7e9be031N[.]exe | Triage

Sharing

General

Target

40971ed736218d1b68321d633d1c1060461be6d035ae73a74c777dce7e9be031N.exe
Size

472KB
MD5

ce1f1bb3fcd112f9166c2138005af320
SHA1

f086967908aa00dc94fa3e0dd1581f50d9ec96a9
SHA256

40971ed736218d1b68321d633d1c1060461be6d035ae73a74c777dce7e9be031
SHA512

f441d1f93f43491682273096a0f0fc99953f63b123b9a64e90bb47136534525ab744209ae196c8b288d7b303bf7b7b6bedd24733da3e8a8a1ae6700b62afeb59
SSDEEP

3072:BSO8RinudiP52xx67lLdZiHDojSMSCKIknNNynDrSUCmnfCm04AetXS+:EDkgiPA6RbPmRbIiszf04JXS+

Score

10^/10

berbew

Malware Config

Signatures

Berbew family
berbew

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
40971ed736218d1b68321d633d1c1060461be6d035ae73a74c777dce7e9be031N.exe

Files

40971ed736218d1b68321d633d1c1060461be6d035ae73a74c777dce7e9be031N.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.flh
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ