Extracted

• • Target

    fe6bb295d6496d22f4dbd95600d5568bce825249425553991a73cdf10930b5e3N.exe

  • Size

    97KB

  • MD5

    da55a544c6bd5ed8e9abb423d6bb3510

  • SHA1

    c2a8b8a26ca674234326b134835d27e00ea95974

  • SHA256

    fe6bb295d6496d22f4dbd95600d5568bce825249425553991a73cdf10930b5e3

  • SHA512

    1988241ae9b7895413f415833f560d88ff3bd567a463867f9a4981f0e4d8b76c66b5bb0ff41121efda7bb48df5fc43420f15f1388dbf1445b2657132bf0a6598

  • SSDEEP

    1536:RMSTouqqMifaRXC2PP2Rs8bjcJmXUwXfzwE57pvJXeYZw:rMuumaRXBP2RsvJSPzwm7pJXeKw

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2