Extracted

• • Target

    d0c08395e20be5f2cc46c14eb1fd185dbdd6a31bf18a14e1abb224a22de365ddN.exe

  • Size

    45KB

  • MD5

    f06e74f0f40a22db0a78f7a02ff735c0

  • SHA1

    7de431d22452f0e7c67721ea2d203865712bdaba

  • SHA256

    d0c08395e20be5f2cc46c14eb1fd185dbdd6a31bf18a14e1abb224a22de365dd

  • SHA512

    12e0ae0519b7909d9b14d937443dba6835087e7452b50ce91da7df64cb052ba88a79f367755bfb8fcf8d01c44677263d1893c4fca5d20664d1b77287723a334f

  • SSDEEP

    768:rVnoEA9SRdPIL/vzJ6WyOH0/wu7A9OLKrdM0i4dRK76v/1H5hj:Jx/EbzJ63KRusEgdZJdRK7yv

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2