Extracted

• • Target

    8e661554b10584d3a28c038ddf828a0b74d2fb5b6ee571657f4b1fb008ad381fN

  • Size

    45KB

  • MD5

    f4293e33aa1c67267ad91000584a0be0

  • SHA1

    d2e972b98724bb358d21760a8e1a63777069dd13

  • SHA256

    8e661554b10584d3a28c038ddf828a0b74d2fb5b6ee571657f4b1fb008ad381f

  • SHA512

    4ddae170b9b33ed702773864a7221d67353bc1fb45582e9c83d34c669a8f3595a0446ae99cace682adbec12daaf9b744bba608e5458d0a59035c13775ff3119d

  • SSDEEP

    768:Oc/i07Bz0yjMpWJECC9tW2hKDIjxEThVf/1H50:nK079+pWMWDIjIx6

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2