Extracted

• • Target

    e4e69fd78f59110fdf2412726920027854e1ce5a46f4863c9d7d8b93a6f9d5f4.exe

  • Size

    465KB

  • MD5

    ea2299d0c47f6e55ad28b71bbb9e2d29

  • SHA1

    76c818d259168e0d6e30b7b394a6b498b1e548b3

  • SHA256

    e4e69fd78f59110fdf2412726920027854e1ce5a46f4863c9d7d8b93a6f9d5f4

  • SHA512

    bef61d4be53132d19010a30361675aa0781292bca5ad0afa49e09a18f5efb83d3fda0859b19ec9d6d927abe31e63d895570e3808e4bf405ee042552f2f1d9cd1

  • SSDEEP

    6144:cY2UBiONTYLqOOVF5V4lKjIbvBhRJfzSf9x7N/I7b9M:EO/O8LKlUmpRe94q

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2