Extracted

• • Target

    ad47356ed7eb3241024951ce30fe8c1ffade3b34d5c3d9a0db0938211dc55b6fN.exe

  • Size

    344KB

  • MD5

    c32191d15e803984fdf7f1549577d0b0

  • SHA1

    88338b4bfc280663ee77ee618e69b7abcfe5dc00

  • SHA256

    ad47356ed7eb3241024951ce30fe8c1ffade3b34d5c3d9a0db0938211dc55b6f

  • SHA512

    cf280f0057f7098cfd08be0e67164c0780efa1b932ce59aae00c34d77354c7fcca24bd4eb878245aee8b297f484c05640cf635977d97fb081380df823ebd070a

  • SSDEEP

    6144:B2q1j+lCpX2/mnbzvdLaD6OkPgl6bmIjlQFn:Jp4CpXImbzQD6OkPgl6bmIjKn

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2