Extracted

• • Target

    7ffd18ae833596cecffff425f35310c21019a37710ad93fc681d40aec4fa6ba8N.exe

  • Size

    64KB

  • MD5

    a3f18f3708f503a4abd985710c0b10a0

  • SHA1

    034523cbb612549484f132a59b4dee7472a9f0d4

  • SHA256

    7ffd18ae833596cecffff425f35310c21019a37710ad93fc681d40aec4fa6ba8

  • SHA512

    25d151d5c0b5d5367f5fef18f0546ccfb0827d946055ba4f1302c82b319a43590a72c972da3e29822af702c3018c297a5fb7ecdc64d6e5cec63bd57eb6955910

  • SSDEEP

    1536:OaSyuLkUyCwSNPVGcLcklLBsLnVLdGUHyNwW:OaSroUyC8cLcklLBsLnVUUHyNwW

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2