Extracted

• • Target

    9bb90d7f88b52c87f1e998a6141a36954e8d477692216bd0c133a974ffa4f336N.exe

  • Size

    64KB

  • MD5

    b0af1937be3a45a95df89de54c0dffd0

  • SHA1

    97d3930136ed8d9934dac4e21fd8612beb26f178

  • SHA256

    9bb90d7f88b52c87f1e998a6141a36954e8d477692216bd0c133a974ffa4f336

  • SHA512

    dd552923a98916f099e0571514e612f5a972ec92bbe0343f5aea24b63c55656b4047747c46ba905621cd18182c2a04a0c52171b3b1403efbcc742ad90fadd868

  • SSDEEP

    1536:8DciYp39bPZCypKR514/lMcav1XNyxXUwXfzwV:bpdQyHto1XNylPzwV

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2