berbew | 402f897816d386161282fb96eb52895340f816ece44e3ebd65d0ab6eb2da56d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

402f897816d386161282fb96eb52895340f816ece44e3ebd65d0ab6eb2da56d4
Size

368KB
MD5

de5c87be7a9b431dfef66aa368f27abe
SHA1

16b71ff03a0eda606597cbc2c78b6df42d052f5a
SHA256

402f897816d386161282fb96eb52895340f816ece44e3ebd65d0ab6eb2da56d4
SHA512

f84d9cf6792d5df4936b27a904615d17a4934fec2a77d5236812c43b7497d84395514721176a7da2bfbb60cb931e48198d601dbb9cb83cc8215c061f0d1814c2
SSDEEP

6144:qoQquUA4QO+zrWnAdqjeOpKfduBX2QO+zrWnAdqjsqwHlGrh/tOz:qlquUz/+zrWAI5KFum/+zrWAIAqWiO

Score

10^/10

berbew

Malware Config

Signatures

Berbew family
berbew

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
402f897816d386161282fb96eb52895340f816ece44e3ebd65d0ab6eb2da56d4

Files

402f897816d386161282fb96eb52895340f816ece44e3ebd65d0ab6eb2da56d4
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 122KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.flh
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ