Extracted

• • Target

    4879114aee04716691168cd5cf1d3b1084a7c464cabe4a56d22974c9b5a99115N.exe

  • Size

    55KB

  • MD5

    340e06ab4bdbcb5e2526cf27baa5f100

  • SHA1

    9e0066c6deeaf346fe517d66936e8f0ba5f6aa24

  • SHA256

    4879114aee04716691168cd5cf1d3b1084a7c464cabe4a56d22974c9b5a99115

  • SHA512

    b07343242be109ab0ca5a4710949ac75f51bd029f9bf8a0f011344825cd11a9878a404eb2d2c0d92c1b755116487a1142f3fc7286736ce26bd5263833d32d347

  • SSDEEP

    1536:olJYeWMMhOSC8mjSNesFRtBlxNE9JFRt51BdplxNZVh9JFRt51BdplxNZVh9JFRV:ojYeLMt9mjSkFefZNXNW0A8hh

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2