Extracted

• • Target

    2dc06f4f81aaf62ecd6bbae6bdea74331828d82701cb68f7978aec4b2f7fc6fcN.exe

  • Size

    128KB

  • MD5

    721d12e991915d10e6ad509dbb6b12c0

  • SHA1

    d53f1b3ff5207615ad80ffe612e790a75eea33a9

  • SHA256

    2dc06f4f81aaf62ecd6bbae6bdea74331828d82701cb68f7978aec4b2f7fc6fc

  • SHA512

    90580fee60861564baf4c873ee6d77f1f8b38339a3c039039ab17f58c2acf792e7015c502ca8351c3454eb7f5529c4bcb723e87dc071ef149b687167f49067da

  • SSDEEP

    3072:jr3gpPVW/iP3HjpDrFDHZtOgxBOXXwwfBoD6N3h8N5Gg:4pQcDf5tTDUZNSN57

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2