Extracted

• • Target

    b8f893f7de9efa07031adfd090502faff65610728f3c0e01c04817f5b6f885b9N.exe

  • Size

    364KB

  • MD5

    f4e460b1e8dfc5430c7a896b6d9dc020

  • SHA1

    11c46dbd34004f38349daf0e41f6b7f9b670df57

  • SHA256

    b8f893f7de9efa07031adfd090502faff65610728f3c0e01c04817f5b6f885b9

  • SHA512

    da21fb26c4356d786b8e0a5d1e6c5d93f4b70312263fa7dc6aff69117c5687679ee34db70358d615390ed1fbd74847e79a09aaaddc97fb2ae119d0582902332a

  • SSDEEP

    6144:NnhQituuu+qsFj5tT3sFxHnkO/ACmLksFj5tT3sF:1as15tLs/EO/ACmgs15tLs

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2