Extracted

• • Target

    36cca6207438f5a20403a047305ff8d9e3408166d7be068e51358d54bdba2c65N.exe

  • Size

    93KB

  • MD5

    febd8ef60fd8f3dcb206b9262fc4fad0

  • SHA1

    67fac037b6d9106d1224fbc1597b9887076f8555

  • SHA256

    36cca6207438f5a20403a047305ff8d9e3408166d7be068e51358d54bdba2c65

  • SHA512

    0dadf5153898cb5d4573403fa9f5b2164128635d65b4731e7f6f5bd44c2690c2db689548376d34baf0aa784b9eac994dbe7ca2cb2d003175d91d15f8799e6435

  • SSDEEP

    1536:XtRVCTeqsU42FFqETU7uqo1iwIoSlO7uXcNvvm5yw/Lb0OUrrQ35wNBUyVVM:9ZR2pEtoF7usluTXp6Uv

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2