Extracted

• • Target

    82296b04a0c6688ac72b2bb6ddb5ac6cf0a32e8273e0a2237702fb37831f95e7N.exe

  • Size

    92KB

  • MD5

    719cde137b0f00996a206e98808a82c0

  • SHA1

    89194ef50c3c93c4a006f4349624d0cb79a51591

  • SHA256

    82296b04a0c6688ac72b2bb6ddb5ac6cf0a32e8273e0a2237702fb37831f95e7

  • SHA512

    670cd04e611cb3213bef4c6139fe184118984b05812f2763dcdc78e14114ce0b228d17d02dfc6047f8fa5f2911dfa91ede275530c4bac6740d550bb6dcb86439

  • SSDEEP

    1536:nTekbJPalZiksT5m/7OlO7uXcNvvm5yw/Lb0OUrrQ35wNBUyVVG:qdGkslAJ7usluTXp6UX

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2