Extracted

• • Target

    5be20389099301ce867342b386126fa80fb04733c916f4654c08a508d2a21845N.exe

  • Size

    256KB

  • MD5

    e0fcb1687e30d32d754a635e2c82ad50

  • SHA1

    c3fecf468d671269bbf84e51a28308d9855e266b

  • SHA256

    5be20389099301ce867342b386126fa80fb04733c916f4654c08a508d2a21845

  • SHA512

    4e5a7750f9d891b8e1649b42916df22ed96d2f18569b1fc7fb9eef0039c2b2744b7b20a167b2c9bf46a53704141d9abb0cb9ad1ef12fe98bfe496a00666b1d77

  • SSDEEP

    6144:MwjSilv853XBpnTfwNPbAvjDAcXxxXfY09cnEWPDZj:1jSiRQBpnchWcZj

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2