Extracted

• • Target

    bfb5e378e87ced632838b76800e72bcd1bbc266c1039c88f8b0147528f11b240.exe

  • Size

    64KB

  • MD5

    119a02fd19c5860add06fa9b96858e35

  • SHA1

    1ddf45ebcad93ec75424e0dde30884acea103eea

  • SHA256

    bfb5e378e87ced632838b76800e72bcd1bbc266c1039c88f8b0147528f11b240

  • SHA512

    abbfbd8a88d61e5270016b7fbc7586302f018e95f526afff238f3e9af5e7878f443b22905f5473b51320ed77aeec3bfbe60732c761f412393fd5fd8bda56aab4

  • SSDEEP

    768:1phSnsajM+/9108xkeWSjPXPPU7llNZWEAQUxiJ/1H5K6XJ1IwEGp9ThfzyYsHn:hSn/LYg/VM7jN3SxE9XUwXfzwn

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2