Extracted

• • Target

    3aa4714906253ce53d03eae3f8cf6c666d0160ff3f29fa1d6267a8cda741e43f.exe

  • Size

    64KB

  • MD5

    876275dd8ee0c112c9c0b8a63f21e0cf

  • SHA1

    973ebebaed522e54e786002eae2c3195a37d9561

  • SHA256

    3aa4714906253ce53d03eae3f8cf6c666d0160ff3f29fa1d6267a8cda741e43f

  • SHA512

    bda543da40499399d3fae5d6717c8ce1e95166d607c030919d7295b8391fc2409854a7af9873cdda87e74d61cd97f7a15e7e27dc57995a0e60c337db4b0a25a4

  • SSDEEP

    1536:qZ97P5e2GC+GhPCXnGZ4r1bTv49UXruCHcpzt/IdH:qZL8Sq3GipL+pFwH

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2