Extracted

• • Target

    fb2ca64f6bdb935ba1961e23332a1827aca6853a4d437abf3b32f4320cb495feN.exe

  • Size

    91KB

  • MD5

    82505212426580e52d9b4c28fed11f30

  • SHA1

    259d9fb4904d7532755db429d263327785c0b30a

  • SHA256

    fb2ca64f6bdb935ba1961e23332a1827aca6853a4d437abf3b32f4320cb495fe

  • SHA512

    540e13c0f79a269a52fe7ba76c92d3e68ebbcf740f75df465002814a351d0197d9637c32d2589f51275b405a734543dff1ff0070accfcee0141e20c4d133900d

  • SSDEEP

    1536:rF9Z45MSTdXFUkxoGutDQMuKfQriC3FSr7TiwkU6joqqIVLgq:HZ45pJOkUdCvFSr7TSUurUq

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2