Extracted

• • Target

    b3a7b87c1fa2d5dae2f16f1222ffc0a3c6787e2bb446d218df48e606eada7f6cN.exe

  • Size

    64KB

  • MD5

    f3ef0299027166fe47bea984ca92adc0

  • SHA1

    4269cdec71162a4ad3ffaf272fff7323e81c8529

  • SHA256

    b3a7b87c1fa2d5dae2f16f1222ffc0a3c6787e2bb446d218df48e606eada7f6c

  • SHA512

    6e2e49d0a6788476627b5945e05b1878833260a95db27b0ccd21a84b6142e2c05c71930d8d0fe75a3c4c071c62ac8a564601b7cb255e17edb4e725acff387885

  • SSDEEP

    1536:QytlxBvFpK1pxoWgEkLllLBsLnVLdGUHyNwi:1BvF0voWgxllLBsLnVUUHyNwi

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2