Extracted

• • Target

    f574ebc9b806aff4f5b9c3363ebe1cba10140d4ff42db4e2096afe3ebfacb4c0.exe

  • Size

    48KB

  • MD5

    aaab0345d60bcf375a4a04799b445f11

  • SHA1

    1845c6a6f3e6953e7647fe4fd29750e76b2d30c1

  • SHA256

    f574ebc9b806aff4f5b9c3363ebe1cba10140d4ff42db4e2096afe3ebfacb4c0

  • SHA512

    1cf8d918ea89c9bddb7eb61af6702cb260c764ea1a7bf99c916b9031428e51f55cf97e91484d16328bb9764fb49220876eb438b6531063b83101484c08481b40

  • SSDEEP

    768:zsYSvB1Wy838CXUaup21NLPyDpyuuKebPMG2ebqvQZp5/1H5a:zhuaMuNLMAudeYG29QtM

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2