Extracted

• • Target

    5d39f465168e7dc229ea91bd0132d18af71bfaf5709931111552c0fb578f1425N

  • Size

    45KB

  • MD5

    7982fffc8528934d58f6c54a4cfa4140

  • SHA1

    411ebff28ca661eef32172f75e61666762362f4f

  • SHA256

    5d39f465168e7dc229ea91bd0132d18af71bfaf5709931111552c0fb578f1425

  • SHA512

    1a3508765d7377b5468e002a28cef22e6e0695dde89f98c133bbb43a59b922fc2c0ba34babe3f2c07ea99f751c65f82b43d1dcd8e9091536199dfc26094c8f5e

  • SSDEEP

    768:QFWmELhaFGOOOW6Yh74Wqih9RXtow8njxxHHNKrDTA5IIscMR5o0D/1H54:QFWmELgFG3ONYp47ih9Avnjvtx5l5MLo

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2