berbew | 198f10d2baa319399f46d8f7f744ca20e4c6ea92e923d5479487814fe4cd050a[.]exe | Triage

Sharing

General

Target

198f10d2baa319399f46d8f7f744ca20e4c6ea92e923d5479487814fe4cd050a.exe
Size

472KB
MD5

ae748f95544c0fe2c489d17a87ee1c0b
SHA1

ea8cee9b5a9c7b1c1d18572f20d17f6bdf79c08a
SHA256

198f10d2baa319399f46d8f7f744ca20e4c6ea92e923d5479487814fe4cd050a
SHA512

6efc6b0c618a8cf17e96d40f6b83e348b071b3a5cb11087a38ab0632d0337b1c3b51eedb0daeb21e58ea38d65e4e6f5dc3963ef9c9b81130a466633093a0daba
SSDEEP

3072:08RinudiP52xx67lLdQiHDo0+i+kCsX/d4Gl2MUkLoXoR:RkgiPA6R+P7ifCs14GsMUk3R

Score

10^/10

berbew

Malware Config

Signatures

Berbew family
berbew

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
198f10d2baa319399f46d8f7f744ca20e4c6ea92e923d5479487814fe4cd050a.exe

Files

198f10d2baa319399f46d8f7f744ca20e4c6ea92e923d5479487814fe4cd050a.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.flh
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ