Extracted

• • Target

    904560a21f5c6fd506f7dd293213c087fa9afd6248992472df68b9e2651400eeN.exe

  • Size

    465KB

  • MD5

    ae0af2422441c8bd73848e52031f5220

  • SHA1

    aa3fde9d668adcf3f885406b6527b329c62a404d

  • SHA256

    904560a21f5c6fd506f7dd293213c087fa9afd6248992472df68b9e2651400ee

  • SHA512

    bf3d3baf88b93febb07670f6519c98e8521890daca9ce8b61e5f713206beb01220145e5b0c70a9391cd1d2a41b08eb47cbcb582aaa4db58e5aa74a1293b6042a

  • SSDEEP

    6144:N6RgqOOVF5V4lKjIbvBhRJfzSf9x7N/I7b9M:QLO8LKlUmpRe94a

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2