Extracted

• • Target

    6bdc3c9e2baa680184dbfd354202eef1c701ccaa4541f980729c1da546ab8428.exe

  • Size

    85KB

  • MD5

    28956ec7425a5d85e159f579728da68a

  • SHA1

    e9eb5369e88409d54de6ed13136cd639fc4d9fa5

  • SHA256

    6bdc3c9e2baa680184dbfd354202eef1c701ccaa4541f980729c1da546ab8428

  • SHA512

    c9371769f3037336e03981f72518aeadd66d4313b6bab7b6d63634c44e4d0d99579851ad82f4a61c842441cc8f700a0efcb630ffca8c0f1ddab5cab9857b8580

  • SSDEEP

    1536:SjPZXML5jL30O0zPK5e36f7Gg/AqlO7uXcNvvm5yw/Lb0OUrrQ35wNBZ:wu5jL30O0zPStG+47usluTXp6Z

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2