Extracted

• • Target

    3eb778d8188c44317e4f4f0be0408521f42418f887e1eda80edbc31d33f6a949N.exe

  • Size

    64KB

  • MD5

    96dc7e64787c52f1edc6234f2c6a6360

  • SHA1

    83aa3460b769da8de5262bec00bf3829dd39a644

  • SHA256

    3eb778d8188c44317e4f4f0be0408521f42418f887e1eda80edbc31d33f6a949

  • SHA512

    808c907dc4cac44eea51c5c10183c334c74bce4ed368422c26c65b197d774ce8044f09d5e3f2f9d2274f91a349c66aa4f83e7535d02c097c538cf60685693676

  • SSDEEP

    1536:ZBZTLECgfB7quElMSkbFtClLBsLnVLdGUHyNwW:PepBAlM9tClLBsLnVUUHyNwW

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2