Extracted

• • Target

    0c6ed717c2bfcaf1f2e1a903bb7633e0a0cbafbdb5ec0c027207c616f33e81faN.exe

  • Size

    45KB

  • MD5

    c0fdfd46585fe40571c5f87984bfb2b0

  • SHA1

    ae749df0158de1c43c01f596dba89c071c2179d7

  • SHA256

    0c6ed717c2bfcaf1f2e1a903bb7633e0a0cbafbdb5ec0c027207c616f33e81fa

  • SHA512

    2b2a3d06ecbd69f4395092de41a90a21756470146c804f1a1c49fe21d6c50bab94a6eae0b90c93fca88834b8c29cb4873060f82bf942376df4c1892874e31149

  • SSDEEP

    768:/fVdqJxCxsYR5MJhbTeKcrKno0wiGGelxmx3udROeC7/1H5XV:XQxCxb5Ghlo0wWKsx30IBZV

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2