Extracted

• • Target

    0d4ad12c9c1c10cebf2f4913ee7965c725bbea4f048ec96089298c2343f9a77bN.exe

  • Size

    59KB

  • MD5

    315c684afee81fb19887e8ff3046be90

  • SHA1

    2b86f6231c2198c89bf4ee7bedad258cb523d4af

  • SHA256

    0d4ad12c9c1c10cebf2f4913ee7965c725bbea4f048ec96089298c2343f9a77b

  • SHA512

    104fee93d4ecd0a7ee09c6cbf9ede1dce99e2ad498921b673dc0ba01a9c12178067d763ea6b3b832ccbd68a8287db6e228dca11b644a24c1cccc8a30f1c7cf48

  • SSDEEP

    1536:QfMU6Zm/fiYS0omyQ3+bM41FDfZJiVBUCNCyVs:uaZqfDZxyTbMQDyVBoes

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2