Extracted

• • Target

    6c8bb74006b5c223ad0170f41b2c289ba63ec2c30a7289e0d285cb87db5c95f5N.exe

  • Size

    64KB

  • MD5

    d0da118cd6fc11c23339310773545810

  • SHA1

    7481218822c4090112357145a5e0eed3dd37de21

  • SHA256

    6c8bb74006b5c223ad0170f41b2c289ba63ec2c30a7289e0d285cb87db5c95f5

  • SHA512

    7438870a49607eb76429285b201605fa8253761534cb7ccc15102554fa354ba5b92fb4903909c9900ce75d3f3b08390ddd8f7313c13a70478271530b6d9b769a

  • SSDEEP

    768:Bn2XUi8rJ7AqNHB2a8bFBhteBEdF2cvWptnIAvp1pwfRp/1H5m6XJ1IwEGp9Thfe:12XUiYJ7/2DDtCtIARoJjpXUwXfzwv

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2