Extracted

• • Target

    d4ae07ae62b4b5539035627cbbf1c6e7333da598693f967d750186d6d90a30e8N.exe

  • Size

    92KB

  • MD5

    73a978c0647bee804923d7b5150883c0

  • SHA1

    be4b83590ea45f84a99abf71a53e7cb9bdbfb431

  • SHA256

    d4ae07ae62b4b5539035627cbbf1c6e7333da598693f967d750186d6d90a30e8

  • SHA512

    6aa8e082de68fc9f5ec4840ccc866283539aa7b2fa6221e5f66c28f7f558f536a399fa86b5d9deab0777ed1770033322fb6be39202761c38a52307ab474cbabf

  • SSDEEP

    1536:TMAXBDOvFLnaxfskFGhwcOiPsWRanzqyPD85sKpN2KN3imnunGP+2:dXBDOvFTaxkkYXenzpypYKVbe4+2

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2