Extracted

• • Target

    daacaf5fad36ab0508463612691962dcfbb67df51568c334723c84bc3cad638fN

  • Size

    72KB

  • MD5

    1e779adec279a7b81663caf5449cb740

  • SHA1

    a34f0bc11d083d936f1b2726cbf3d300cc826db6

  • SHA256

    daacaf5fad36ab0508463612691962dcfbb67df51568c334723c84bc3cad638f

  • SHA512

    56d27a59547811627d4b486a9f61046dda1a2b251b4534676b391d9f4a56202d2bd92e250a362b9978798d5676c0be3882248d3ce7907e4448ccae01004fb6fc

  • SSDEEP

    768:bWACR9Wskv+xrURauyyZc5F+7gsselR/yDIkuB/1H58ko9U9UiEb/KEiEixV38HC:qX9/kv8CMiJ9ztPgUN3QivEtA

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2