Extracted

• • Target

    94796986cad0bd0f92df163e9f4b7c15d356da19efd77aa5a7e2022225484586N.exe

  • Size

    45KB

  • MD5

    a0cc9f7413f5b91ab7f291611cd33280

  • SHA1

    83d5e9b1fbdcda1cc8cc0cd4a8985ae8fe0504fd

  • SHA256

    94796986cad0bd0f92df163e9f4b7c15d356da19efd77aa5a7e2022225484586

  • SHA512

    d210f643a072627a63ab060839640c7cfb0d69f53decee3afdef2ff9f99a5f00836424f684d21415a8428d1c617527395ad251eff7bdf9df90381f5a4b20ebaa

  • SSDEEP

    768:Am35GTOwqeeJhypeqqzE82VKZKIL6TO+GTALA/DF4mNybY1skMl2Ojk/1H5dc:Ae5lFZL9GKZZLqO+UAkqY22o

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2