Extracted

• • Target

    d3dc5cdc9607a24056c3b43fa259eb0381d15bcab4e1a789c68037a16a6d3f73N.exe

  • Size

    226KB

  • MD5

    84d12d744ebe9828286274d0992d9e80

  • SHA1

    ff8e490503d6387c97b49e7e835a2ee13127b2f7

  • SHA256

    d3dc5cdc9607a24056c3b43fa259eb0381d15bcab4e1a789c68037a16a6d3f73

  • SHA512

    9c00906f054ef4cf3033b93976c82578705928072a1c0cbe13222811785bf0f6820c43a81e01ac451481d5a18f67301f2527a4ab61d95a69ab1d2fab1d85cab9

  • SSDEEP

    3072:K9LHB2Ik86Axw3GDKcWmjRvDKcpDKcWmjRrzNtQtjDKcWmjRrzNtb:CLHB2ljAxynxEtQtsEtb

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2