Extracted

• • Target

    74abbb272871abb10fd659166e2649dd319173d19cbbb5e4c8a5b393ff669581N.exe

  • Size

    45KB

  • MD5

    9caab7b7214842a6884f45c81b4f8be0

  • SHA1

    6ed0fb2a7596a507cc127b10929ffc33dc0d1871

  • SHA256

    74abbb272871abb10fd659166e2649dd319173d19cbbb5e4c8a5b393ff669581

  • SHA512

    b65cdc0f1381e550ed1bff904ee101731a2620391f9f04f6e0ea940285c2d3656635c8c54322570dc727b3604de029a13d58adc37ef93e24a58d3d87d3a43791

  • SSDEEP

    768:j45wUiO7YM2zxx/92SMQqvzBqB7Oxg4r/TYWZPd/1H55:jQwvMm9Vqvz/y4PYWlX

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2