Extracted

• • Target

    e44b78ff9745728715dbaff45f5c89c6b3fc513a80fd294d20b9c39ec5eb3ca3N.exe

  • Size

    91KB

  • MD5

    abf6cf76ed1197380741baa3e3e35740

  • SHA1

    87b26f9838c1cd69779357224da81fde7f759271

  • SHA256

    e44b78ff9745728715dbaff45f5c89c6b3fc513a80fd294d20b9c39ec5eb3ca3

  • SHA512

    46e2a32a86631907f1f0a5298e586a428f54caf315c62fe3930c3fe31dd6013584e6eddd48407c15742e07de66025f649c2a568c349b7ea36016abf1ed596b70

  • SSDEEP

    1536:rt8/MGJz6bybqEMr0heorriC3FSr7TiwkU6joqqIVLgq:rCEvebnMrmVPvFSr7TSUurUq

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2