Extracted

• • Target

    955a46e482da1c7f92d4d51fa37f98ccdd081613918ff494177bb3823af3c191.exe

  • Size

    67KB

  • MD5

    6814089f9161749b7dfa73ba9423b0b2

  • SHA1

    90ef577c7ba26594ce0a4d3cd9495540628e2538

  • SHA256

    955a46e482da1c7f92d4d51fa37f98ccdd081613918ff494177bb3823af3c191

  • SHA512

    ba0fdfcde19eb79552ef96376bac6ca8873024cb09bbae2098e429d741773885c34f30fecc35e5c9706de72334be0ed90b5dc58d42910512f4ba85bafb097fb4

  • SSDEEP

    1536:ZAmhH7R0JPnKa5odmw+U/Vy69ai+Tun1kOsJifTduD4oTxwF:T0JPnKo0muqOsJibdMTxwF

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2