Extracted

• • Target

    b10d46ad86d9fd86c0abb957b8cb3d91670ce9763f6be7808c4a4b9779e07a19N.exe

  • Size

    219KB

  • MD5

    5dc9a393b7a51a793058c6d6af1fc240

  • SHA1

    b6049351cc8a9f29bf0a3dd4f00850111cb317a2

  • SHA256

    b10d46ad86d9fd86c0abb957b8cb3d91670ce9763f6be7808c4a4b9779e07a19

  • SHA512

    f582a743d216aab22a08530acd09032fb1f4e8f730d0832b70dd1d0587328bcf0465c527594944b10ae1457c1fc40f482866a30f0cb9be003ecfe129bb61eb4d

  • SSDEEP

    3072:SaboN5DOvXaPzwuZkO0aDb/IBPCOQvU6z314EXrjvwSfYrwBt:SaboWXwzDOO0aDD4PCxdXXwSfYrwB

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2