Extracted

• • Target

    2e87ebdb1248136355b7a29e0906e5f040b1192c3651f304d5eced9e2388a331N.exe

  • Size

    64KB

  • MD5

    cda1108db26f7ec6d6f0f08842e647d0

  • SHA1

    3a85544df7b2e07070afdcd3693ae005b8296afa

  • SHA256

    2e87ebdb1248136355b7a29e0906e5f040b1192c3651f304d5eced9e2388a331

  • SHA512

    e17ad5c01eb6f339f16242b6db6d4a68db4d03555dda042af910e2da6bd7751d4997c534c1488f0260824a351e54a08337fa5e0e8c5d857a2166e5ac1f9dfb20

  • SSDEEP

    1536:ot0jwkO2MtiiRhTSEXOOKvlLBsLnVLdGUHyNwy:q08kOmOKvlLBsLnVUUHyNwy

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2