Extracted

• • Target

    7c0887a91772a86a28093b18b487e1d24934a3ecb40c5589c9291f37372ceea5N.exe

  • Size

    74KB

  • MD5

    cb629995ecc296a633124ef403ea5440

  • SHA1

    348e28a265588884f8eac07993f4911cc7aa612c

  • SHA256

    7c0887a91772a86a28093b18b487e1d24934a3ecb40c5589c9291f37372ceea5

  • SHA512

    7ca2cde040f4f09715e660ebdab6b3e6e862a968b09abb3f604611e6b99e8a5b7c01e8efe76efa3dc986d25ba6a517af2db5799254fa06da7df1faf233ad96fa

  • SSDEEP

    1536:eVV4SbhE2coUxZiBB1A7Im2BAQc3ATO3Qi7uPH5p:UV4Q0ZiFqZ+AQsgp

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2