Extracted

• • Target

    6a87d68721181a0dde755ca7c63a1356dbb4e55bf1a4dddaa0ee296986624200

  • Size

    91KB

  • MD5

    c7f52d309092c2f7a4e57ddd038886a1

  • SHA1

    98232b0488364800ad1599c60bf59c182a112fdc

  • SHA256

    6a87d68721181a0dde755ca7c63a1356dbb4e55bf1a4dddaa0ee296986624200

  • SHA512

    fc38c5a285ba44885f3be993b0c8a21605c7933ef6c68e34681cf12c86018bd719a52343383b0d7428c015943383edd02e8fec7e22a0da22553748e0f48b6590

  • SSDEEP

    1536:BuaMntaikNj0/bwmlLBsLnVLdGUHyNwtN4/nLLVaBlEaaaaaadhXd45J:MtaiJwmlLBsLnVUUHyNwtN4/nEBlMdQ

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2