Extracted

• • Target

    65421ab0116ec836099e70315ff51089712d1df94074cc3819d64cbe729c274bN.exe

  • Size

    48KB

  • MD5

    5cf07f8815d00960f7134da9a8639700

  • SHA1

    a9c65852f2fabcb8e8eed83348225681b1d86768

  • SHA256

    65421ab0116ec836099e70315ff51089712d1df94074cc3819d64cbe729c274b

  • SHA512

    ad70d2dd4c33c707eef04ca48912042ea64ff6f2cf6bda534c9bf449c87e90612483673c15cc81d610ae28b11266412a1ecf9cc59237d0f5c69ebf4670906f8d

  • SSDEEP

    768:pYNxqvb/oOE9ZTPIjSv+E9ku0HB0i0RTw4AusguN1Cvvb1eQ1/1H5:pnb/oZ9VPmSv3MR0xw4AusgRz1eQv

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2