Extracted

• • Target

    3565ad533ba5d32a30d0f58b7d2c9b3de6f4b6abb9b339e39545fa1f25ecb953N

  • Size

    64KB

  • MD5

    7416c2e6ab2c6b30cd65b3ad02385430

  • SHA1

    dd2f4debbe958f8baa6011706943d31fbc0e1166

  • SHA256

    3565ad533ba5d32a30d0f58b7d2c9b3de6f4b6abb9b339e39545fa1f25ecb953

  • SHA512

    ad6b5a54d8edf9be8843995feb859de990e2be45a04a2874b192dd793533f2ebe238cdfb91444d545ae194ffee9f73f2145898bce0c283449ff8c9bdfeacaace

  • SSDEEP

    768:6Zwx5ZWznDUkBWqWMc9sYExtAbE3+WBQhB/1H5A6XJ1IwEGp9ThfzyYsHv:6ZwbZB4q9hExCE3+WBC73XUwXfzwv

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2