Extracted

• • Target

    2f606b94231c9e465a22d99558d7b0e5cfcd121a93956d5895bb00dbac576721N.exe

  • Size

    64KB

  • MD5

    39f462d1e9c536ab0e04d0a8afef0ba0

  • SHA1

    3baa006ce14bc21a191903a536f68697f73fa68e

  • SHA256

    2f606b94231c9e465a22d99558d7b0e5cfcd121a93956d5895bb00dbac576721

  • SHA512

    73fb27596701933e0cc113dd8de2f5376247c9b4a7cacbfdd39a8f577ebc72962ce7418145759d739b79f3313a1cb34f277054bfeff1dbb1a5afe2ada9448b80

  • SSDEEP

    1536:vGBZc8aKzd7bFL2tsT+rU9YwbEFiEcQWJXUwXfzwH:uBZcNcdY8EcQWtPzwH

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2