Extracted

• • Target

    2255de69f8bf087635d28b3f8f3c2486f6c0f52fdd216b43589bc9843d0c8983N.exe

  • Size

    45KB

  • MD5

    a35e1f42f20671e2bb9032459758dce0

  • SHA1

    6724cbc8023147a08cc73b47a61fcd26e7b322ee

  • SHA256

    2255de69f8bf087635d28b3f8f3c2486f6c0f52fdd216b43589bc9843d0c8983

  • SHA512

    fceaefbf52671515c5057c364905fd9a7ce96223b7cc47441a90f4abb1f3142e7f19aa343c3e0431579fb5dbe4539d9aa1df9ad6d68e53ce936ee775b3814685

  • SSDEEP

    768:ojdXcDUbYeWuxMbvdShqfPC8bqjSNOhJsFRtBlxNE9JFRt51BdplxNZVh9JFRt5G:olJYeWMMhOSC8mjSNesFRtBlxNE9JFRm

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2