Extracted

• • Target

    a272e9321eec55e212282696966890cd9f13e3ba3ddad2510c65965307716505.exe

  • Size

    101KB

  • MD5

    b493eae15a0a31ea86ae973cc3baf6d4

  • SHA1

    afc5247bfe528f3524667fbd4a55cde972c83569

  • SHA256

    a272e9321eec55e212282696966890cd9f13e3ba3ddad2510c65965307716505

  • SHA512

    aa5e7f401bd1f83d68389cc952f3e8a1a2f67c40cacc31408e82704aba89ee3e04067e9f9db21143177c58d693a5d666dce3552fab50371320a3ae1fc43b1d94

  • SSDEEP

    3072:CXhaCRYc6HWduXqbyu0sY7q5AnrHY4vDXZ:jCRkHl853Anr44vDXZ

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2