General
-
Target
8d1bf7c1c18392055e3d986b3dbf2f0afa06be6b5c35b29db02870dec09dcfad
-
Size
89KB
-
Sample
241223-3cv9ravnbj
-
MD5
5fc0472d1e0b4bc93005b20ccd494db7
-
SHA1
0a6897f20de86674a46b7d18a8389decdbc960b5
-
SHA256
8d1bf7c1c18392055e3d986b3dbf2f0afa06be6b5c35b29db02870dec09dcfad
-
SHA512
5c986218e208e2303df7e83d5fe914bb73943b6dc01fd975f98a6634ede9129b7b92d0688e423ffb0394c148f69d184603f24f4e38616607fe1414ee61d55679
-
SSDEEP
1536:pt1PEnzBKMrbU76c0/wi47sPZYi9J1vPudUz2B6atq77NsTgcqlExkg8F:pzEnzBKybUf0/ywqi9zvPeUy32cqlakh
Static task
static1
Behavioral task
behavioral1
Sample
8d1bf7c1c18392055e3d986b3dbf2f0afa06be6b5c35b29db02870dec09dcfad.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
8d1bf7c1c18392055e3d986b3dbf2f0afa06be6b5c35b29db02870dec09dcfad.exe
Resource
win10v2004-20241007-en
Malware Config
Extracted
berbew
http://f/wcmd.htm
http://f/ppslog.php
http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d
Targets
-
-
Target
8d1bf7c1c18392055e3d986b3dbf2f0afa06be6b5c35b29db02870dec09dcfad
-
Size
89KB
-
MD5
5fc0472d1e0b4bc93005b20ccd494db7
-
SHA1
0a6897f20de86674a46b7d18a8389decdbc960b5
-
SHA256
8d1bf7c1c18392055e3d986b3dbf2f0afa06be6b5c35b29db02870dec09dcfad
-
SHA512
5c986218e208e2303df7e83d5fe914bb73943b6dc01fd975f98a6634ede9129b7b92d0688e423ffb0394c148f69d184603f24f4e38616607fe1414ee61d55679
-
SSDEEP
1536:pt1PEnzBKMrbU76c0/wi47sPZYi9J1vPudUz2B6atq77NsTgcqlExkg8F:pzEnzBKybUf0/ywqi9zvPeUy32cqlakh
Score10/10-
Adds autorun key to be loaded by Explorer.exe on startup
-
Berbew family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-