Extracted

• • Target

    f153f855ec58c925432a4a7230b356b8c66ef0bb291d9f7292b6db7cca52513eN.exe

  • Size

    97KB

  • MD5

    b2f8e1e92b111880eac0594ef9441d40

  • SHA1

    c330cb885d6a10ad6b31ec122ed9f8d43ebcbb28

  • SHA256

    f153f855ec58c925432a4a7230b356b8c66ef0bb291d9f7292b6db7cca52513e

  • SHA512

    439864def04a6466f70c82808562e1bbe3673c5d8c9ec6373d2bba6fbc76f1741429db58f79a573418767e88aad43102de694d62a02af76d92d1990633ca1597

  • SSDEEP

    1536:d+OI5Otb4Z6jZheOPrzXCYFcFvP8HXUwXfzwE57pvJXeYZc:u5JSnVX/cFvP8zPzwm7pJXeKc

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2