Extracted

• • Target

    f09982e093f309fcaacb1fb2441cea70c1275368ba1843a6dc7ca76915fcd591N.exe

  • Size

    301KB

  • MD5

    a3eea63fc0b1ed788abe87f3e2a94560

  • SHA1

    e0f76238cfd4e1ff77cd8b0a140b34e0662fcac3

  • SHA256

    f09982e093f309fcaacb1fb2441cea70c1275368ba1843a6dc7ca76915fcd591

  • SHA512

    03c71428afa0fdb25d8318d1267e2be887677e424df21e95c647c812121b2977348b0788bcae1a42f0396b91a33b1dcff304675850929120d5df39e1f1f7c5ba

  • SSDEEP

    6144:ktWFRjSGmZfm+kte+MZmYm+DakBpvXBwNBezP:ksne+Y/+TezP

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2