Extracted

• • Target

    05d37087f966af5107082e08298d0933f77bfcf22ec8462a359a4623a6c5bdc8N

  • Size

    45KB

  • MD5

    da7f19726a539b70b88a568380ccbaf0

  • SHA1

    1d20692375084a7a4adb3012038526b39126e793

  • SHA256

    05d37087f966af5107082e08298d0933f77bfcf22ec8462a359a4623a6c5bdc8

  • SHA512

    430325123127d310a4e8d9b8854576e285902ecceab4f415670e305603d3a209a68b573f9c930d2b2d094daa1d39eed33b56e5c2aca9a485316b720b6cf0f438

  • SSDEEP

    768:ldhU4fGjtFJ2vN7lB4RAMLOE833WM8/1H5c:ldhgjtFo1Ez4GBC

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2