berbew | 4389136b35042ce4dc26928108a86ddbbf20f410f9dcc9ddb2f48c3fd3ce8e58 | Triage

Sharing

General

Target

4389136b35042ce4dc26928108a86ddbbf20f410f9dcc9ddb2f48c3fd3ce8e58
Size

472KB
MD5

0e20c65b32193b0228c04b1b3740aa8c
SHA1

8989027ca05fa816b2cadff94d02c889d3e66847
SHA256

4389136b35042ce4dc26928108a86ddbbf20f410f9dcc9ddb2f48c3fd3ce8e58
SHA512

11c8b965be14afcf02bc136b5f0b0554e9de99f3b640250238cb606d70c295defcb2b1689093031bcd1d0d27d24b0386e0b106199596d6d3db1ae125c4aaef25
SSDEEP

3072:zq8RinudiP52xx67lLd3iHDozxheFEpuOHvAOiyWMJi7EMMZvfSv:zHkgiPA6RVPzxO5yWKi7pMcv

Score

10^/10

berbew

Malware Config

Signatures

Berbew family
berbew

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4389136b35042ce4dc26928108a86ddbbf20f410f9dcc9ddb2f48c3fd3ce8e58

Files

4389136b35042ce4dc26928108a86ddbbf20f410f9dcc9ddb2f48c3fd3ce8e58
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.flh
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ