Extracted

• • Target

    f2fb890d1e969598ff8b8fe627904828946b636368226d8d6796afdfab2c6468.exe

  • Size

    219KB

  • MD5

    b69ee0313a2f47879b90813756946c44

  • SHA1

    3ef1ee581f2e8b4a2aafe7b95d75565cd705987a

  • SHA256

    f2fb890d1e969598ff8b8fe627904828946b636368226d8d6796afdfab2c6468

  • SHA512

    229c4140cb748509413dc38e85951c1e9a9daf7d7fd899265675c88fae5e25d4490ba3599bc9f1b8f7735e99ecc34a6bd83f1e462f0483871b9a6283be705854

  • SSDEEP

    6144:rO6xSOkIqdt8vyzDOO0aDD4PCxdXXwSfYrwBG:66xSlVOOdDD4PCxdXXwSfYrl

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2