Extracted

• • Target

    362bf1701d3e5dfc90f87ffccbc14225618d2c817ed77a44ebffcb7c91ae1113.exe

  • Size

    344KB

  • MD5

    36c4f06310842c369f5e649c5f28ab3f

  • SHA1

    eeef64413d08d86cc70600fe79d7794024bd3c8e

  • SHA256

    362bf1701d3e5dfc90f87ffccbc14225618d2c817ed77a44ebffcb7c91ae1113

  • SHA512

    82b7910864aeb226d5d0d3f6ae6ff981d92263fac1b921b3ed2ee9b05a3c9c6b1f075af6410941f0dd3d75c6419d8cfd7fc2d83f9ae4630528317fd38bd61fa7

  • SSDEEP

    6144:km1+IhWCpX2/mnbzvdLaD6OkPgl6bmIjlQF1:klxCpXImbzQD6OkPgl6bmIjK1

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2