Extracted

• • Target

    33d4c1db46f02054e595d58f1ded9e3a5004e1ed218af9ba1cee18212421678dN.exe

  • Size

    45KB

  • MD5

    7295d8d3accd1c487405cfb02b21c780

  • SHA1

    5d23015ac4f697ccf8a516c14084dc76f0569882

  • SHA256

    33d4c1db46f02054e595d58f1ded9e3a5004e1ed218af9ba1cee18212421678d

  • SHA512

    13c411f1bbaae882752b158bd1dd48be81d302c137aaa668898f529f52b223a72c4b313690cc3283f7a5a560fc079556ad2a203ef5f376c9679f957b6d8c2c94

  • SSDEEP

    768:Nta+Nl54s+oNvR3EnUlFlCwE6zV+ul9w9vhNuPs/1H5+3:/a+2oN5cF6zH9QvK6w

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2