Extracted

• • Target

    0cfbe74729f81622000675d26bf02479a41b931f727465bba3ec6b136b65e398N.exe

  • Size

    101KB

  • MD5

    7d64766e8d1d12589111e82e3b01ad60

  • SHA1

    3fe1fab564617ed9b1ec1ed81593cc3fe5229cd3

  • SHA256

    0cfbe74729f81622000675d26bf02479a41b931f727465bba3ec6b136b65e398

  • SHA512

    5b7c7071afe220de9a285e222d68d9cb760f6b2f90c37807c63ecdca3e3174c308437a64a96b1092699e0a6548d09e00de3a96dd604c53422dfb6e84fe8e878a

  • SSDEEP

    3072:gDdQbTnRmFZuYVE2lduXqbyu0sY7q5AnrHY4vDX:i6mF432C853Anr44vDX

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2