Extracted

• • Target

    25b5241aa8301fc6a37ebfe74dfb79f80a12bee04f86891e33b318c04ebba6fbN.exe

  • Size

    97KB

  • MD5

    a77435eec9d8f5d9f1c82e5a1a1297b0

  • SHA1

    c3270bd9acd40d790a90b19321df224d26252a87

  • SHA256

    25b5241aa8301fc6a37ebfe74dfb79f80a12bee04f86891e33b318c04ebba6fb

  • SHA512

    e036c282ff9bd0bf89098c2aa62ac4b10f2c89725ac04b1121021a1b5c72fb5cbe5a7d452ecdf21a4bd475bed37e26ec3b1c5801b8ba5e126c43b4abf2ba1cc3

  • SSDEEP

    1536:AG3V9GnKOCJqwxJ8zw7nOscNLdXUwXfzwE57pvJXeYZQ:iKOCsII1NLJPzwm7pJXeKQ

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2