Extracted

• • Target

    1fcd8bf6014af58e2a51d5b0458298c9239437b71bc36d004aa832d2b281a15aN.exe

  • Size

    74KB

  • MD5

    c6386817fce3e2e67f336ed0731c5b40

  • SHA1

    e4c48b49a02275a3ffe50da269e1bcdb8907813a

  • SHA256

    1fcd8bf6014af58e2a51d5b0458298c9239437b71bc36d004aa832d2b281a15a

  • SHA512

    27c9d7b648483d1fb7dea00a4c97c16bd02cd93ff2a9195e569f553e113ba04e37b0e90b2fe95a750565c00d4ba5dd72d6b66e956d7a942dd3f9a662db70ec35

  • SSDEEP

    1536:+DjaHVe9PeTZlymxk38oDen48DwVWEn5qpqjE8BIf:+DjMekzx3rn48mfSqIeO

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2