Extracted

• • Target

    793f48b5594478fa70bd542a9dc28bd57e21aa2f5df7925c7b594cef02ba8326N.exe

  • Size

    63KB

  • MD5

    8081fff1243f30153d410c31999b66b0

  • SHA1

    ffe5fc4cc9f319e1fd424d9ab0a6f7af9e9f4342

  • SHA256

    793f48b5594478fa70bd542a9dc28bd57e21aa2f5df7925c7b594cef02ba8326

  • SHA512

    ac53a2074f14f236b89aa8aed9eb8e35e9fef7cfb6ee0f0c3b6f533ec6a20684954155ea9c95156876752cc7654536cfaff26c3b163a799dab3f8ee45dde527b

  • SSDEEP

    1536:3Ll/FpJwiNC45VMidM2/H0kQn+VdQEn9rjDHg:b9DM2/UnodQk9DHg

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2