Extracted

• • Target

    8e32b355201385c78f05bb840dea297cf06f16a6c54bff7bdc2ea3343e98cd76N.exe

  • Size

    45KB

  • MD5

    bc6b0ba542c06afff113eefc159e5150

  • SHA1

    55de0e39f52f9757eea9b2ef416912e18e7b5b22

  • SHA256

    8e32b355201385c78f05bb840dea297cf06f16a6c54bff7bdc2ea3343e98cd76

  • SHA512

    8b1fb3a9404431f0c4115807e8480e2498d2391f1cd81cd3754a677ccd4018d829131d459f0abae6744e36c5196534478d642ea8fe240655d3692cc438be1e80

  • SSDEEP

    768:hlUn/6wyX9xiQaVp341Io9XRC/19l07NQ84PxCMADLq4dO+V5qQGBRVV3d/1H5D:oQiQa4aoJQ/1n07NHyCDXdO+V57eRVVd

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2