berbew | d8cb8ace3792332b59d41141596cdb93fa99c74019d75c45c1cc8674e9c51395 | Triage

Sharing

General

Target

d8cb8ace3792332b59d41141596cdb93fa99c74019d75c45c1cc8674e9c51395
Size

472KB
MD5

7a2dfa20c3e9420b60adb58f40d70637
SHA1

86a59af8d997927e200951913d7f86efd63094cc
SHA256

d8cb8ace3792332b59d41141596cdb93fa99c74019d75c45c1cc8674e9c51395
SHA512

434cb5889a58c771a4d294b1d99dae1fb0c3940e816b8b47f36309a214903a8f67c2a2c65bcff0da68ab4d77b11edfd690444e52952854e2cda83eff5cb93516
SSDEEP

3072:l8RinudiP52xx67lLdGiHDoRrx6YWS19G3ipveRMxqGxiv9:6kgiPA6R0PRrx6YW4FtUMxvm

Score

10^/10

berbew

Malware Config

Signatures

Berbew family
berbew

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d8cb8ace3792332b59d41141596cdb93fa99c74019d75c45c1cc8674e9c51395

Files

d8cb8ace3792332b59d41141596cdb93fa99c74019d75c45c1cc8674e9c51395
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.flh
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ