Extracted

• • Target

    ecc664cb5acbfe39fd77af2c45353e33e277f95c843cc3eeb78313d47f0edb13N.exe

  • Size

    181KB

  • MD5

    dc565ff8155d7d0c342faaa3b729ef50

  • SHA1

    2d4fc1f361054cee6cd75159f9086ce27d8b2867

  • SHA256

    ecc664cb5acbfe39fd77af2c45353e33e277f95c843cc3eeb78313d47f0edb13

  • SHA512

    df086cfd817db49641c3a1e7886d42516a4b72dbc77dd5129e56b63876d8d0117e9538b561b30295efa5b454795ad7d29c9273781224a9c42ddd6d42f7863e3f

  • SSDEEP

    3072:47Ta0FDrFDHZtOg04UxSl4uO0JGDrFDHZtOg:oj5tTh7G0JW5tT

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2