Extracted

• • Target

    3b4bfbc7db13830a1c5cf55848a9f846cb874ec6980e65efc0256c0300731bf5N.exe

  • Size

    363KB

  • MD5

    b5a184a6c3bb212ddcbcb7866ca26090

  • SHA1

    250b1c3fc7bdff6db4d5eda6aa2adb5a30d8d350

  • SHA256

    3b4bfbc7db13830a1c5cf55848a9f846cb874ec6980e65efc0256c0300731bf5

  • SHA512

    ebaf81917947282c82347d9977a9411359cf2336ca2927522e583a01d983ee70b7f2e07ad16b0c94f08c4c2500d4892462431ab34dbcda4884e843f8f0f699a9

  • SSDEEP

    6144:pMXObVU5tTbVXksax8n5tTDUZNSN58VU5tTt:pY6G5tP6sus5t6NSN6G5tZ

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2