Extracted

• • Target

    484339da9f93dcd81a012cd41fc03e5eaf59da32dce5bcbe21dc4218daf9d495N.exe

  • Size

    101KB

  • MD5

    f373dfaaf5e52836bb6e9e44d9511290

  • SHA1

    334e2240b8f2dd49152b0e950efb02bdea89faad

  • SHA256

    484339da9f93dcd81a012cd41fc03e5eaf59da32dce5bcbe21dc4218daf9d495

  • SHA512

    4f4a70690f8ae88927dcfb62a5248309d36c07571f07533270d9b0c54399e50c132055d60a5e6411693148e065a73bd432d1ab2171132b72c7e1378e8dac4b6b

  • SSDEEP

    3072:CA/GFTh81A2mciduXqbyu0sY7q5AnrHY4vDX:CA/GF61Amp853Anr44vDX

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2