Extracted

• • Target

    0a67115e0263ad209f7ccac159229b7e8d4f71eba116a5d2eeb378866587a9d2N.exe

  • Size

    91KB

  • MD5

    c514172f4fe50e6ca5f20b4c3d1c79a0

  • SHA1

    6c88655b17f9c1e36e82fb8803a80f6d31c06f06

  • SHA256

    0a67115e0263ad209f7ccac159229b7e8d4f71eba116a5d2eeb378866587a9d2

  • SHA512

    b5a9ea3e143d1e84c5fbd421d34ff8208de8748be078d90eeb18de11c60c3c41074efc92b0dd62b3f608981c273e47c0d75126f61ed95da86245ad29d69dd365

  • SSDEEP

    1536:tDXyBwc6htlZBgUhGDofKriC3FSr7TiwkU6joqqIVLgq:mwc6r3BvGcfUvFSr7TSUurUq

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2