Extracted

• • Target

    698399e3896ff9889b84928ac80cc1db9b57c31aaa93919a52ed731892eee634N.exe

  • Size

    91KB

  • MD5

    d52de8e4a75de0360568f65c178e4cf0

  • SHA1

    349c1c653ccc869e2bc781eecb55cf1a4566f216

  • SHA256

    698399e3896ff9889b84928ac80cc1db9b57c31aaa93919a52ed731892eee634

  • SHA512

    d74d259755e6197e309355102e07f634001bf37ccef98f45ba98a7a7278cfce6c5fa77f6bb41681f1e312151dd3171b5b6f04bef4bd667408add97793a9dafa4

  • SSDEEP

    1536:xI5lrsHuZHaquRbqyB+SCCKGXriC3FSr7TiwkU6joqqIVLgq:xYCuZHaquRWMfJKCvFSr7TSUurUq

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2