Extracted

• • Target

    b858c146f79c1df468dd26e88e9bde60e91c5eb8eaa253ef81f95f953bb5a588N.exe

  • Size

    45KB

  • MD5

    9bbf47c05a60b715ec1a17cac5ba9fa0

  • SHA1

    eac5e33bcb1feb0e26868a44468ad6aee4f0f4d2

  • SHA256

    b858c146f79c1df468dd26e88e9bde60e91c5eb8eaa253ef81f95f953bb5a588

  • SHA512

    bccaeecde778f40a0bdcdd5b2f79e5111f1f853b1c054eb10740a185ac966b9957970ab66b93ee7f78497c80ccc38c53237ee98789e62ed377a512cc5a289d08

  • SSDEEP

    768:PCFK4j2zttMsmtz9FA58OPsnaDtS+qnOoRWhyCl0EKgbZgti/1H5+:QMrMTtz9O58OPjw+ZogyCl0pgbutoU

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2