Extracted

• • Target

    a777bdd5861da86bafdd0e2e8d92ef974432728adff61aa8730d7f588c93d2b9N.exe

  • Size

    91KB

  • MD5

    f02da8e984cf4256078b221fa8667370

  • SHA1

    d0757fd5f82a83c0a97d9e03ec2905f8dcbca43d

  • SHA256

    a777bdd5861da86bafdd0e2e8d92ef974432728adff61aa8730d7f588c93d2b9

  • SHA512

    623b0d348d5c733a3de7bab5aba1f1c96b45d975d82a28521c0160c02840f5110d09816dc76a2f65bbd9ff33c766a5853b960f3a2985bb986bd922e785491085

  • SSDEEP

    1536:wcQqyobAdnQaOhOiwXqYDfUTEMnwkyiriC3FSr7TiwkU6joqqIVLgq:w7qiaw6af4Ik7vFSr7TSUurUq

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2