General

  • Target

    b5ce4502c2ea87cd531b0b2a5650c2cdf9af2312a849d593ea4aef50c3f6a2b4

  • Size

    109KB

  • MD5

    58152f066b99588c19ee8e227ed749be

  • SHA1

    badd30da9b37d7d6b52bace1d5383fae15dd25b1

  • SHA256

    b5ce4502c2ea87cd531b0b2a5650c2cdf9af2312a849d593ea4aef50c3f6a2b4

  • SHA512

    8af1639dfe224236d6f24b42a20ab4a05a09b8027b611c4e87b490ceed5db493abb15ec131373d94d7b04bfe67d2bac7eec1ff7e22e55a9a413caa6d0bb2b41a

  • SSDEEP

    3072:cuy6MK7yBGFGO0EdETNOK2J9dLCqwzBu1DjHLMVDqqkSpR:cf4yBG4ORdTJ9Nwtu1DjrFqhz

Score
10/10

Malware Config

Extracted

Family

berbew

C2

http://f/wcmd.htm

http://f/ppslog.php

http://f/piplog.php?%s:%i:%i:%s:%09u:%i:%02d:%02d:%02d

Signatures

  • Berbew family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • b5ce4502c2ea87cd531b0b2a5650c2cdf9af2312a849d593ea4aef50c3f6a2b4
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections