Extracted

• • Target

    ddc944dcc96b770458f22cdcb90dcfbe77ccc90815444c7f446ce7adb3f1053e.exe

  • Size

    64KB

  • MD5

    a24094ea0ba08ecaf6dc590e3401c478

  • SHA1

    199ca3a81b42151f1a85e1ce2e10b47eee567a1f

  • SHA256

    ddc944dcc96b770458f22cdcb90dcfbe77ccc90815444c7f446ce7adb3f1053e

  • SHA512

    445cb0dd6ab7ac7cbf044f7ea64af89d404e3d04076ab1e5b4c6aa35c06f88053111e0acd32b49cf5e5356a62628ebfb5959bf1446a655a429426e6a413484f6

  • SSDEEP

    1536:Z1PGZ25Kn76dcPBljuGKOX3uMqe8YJlsp4BUXruCHcpzt/Id3:wrR/NKTMqXGle+pFw3

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2