Extracted

• • Target

    1b182941b47e48e97d0e8ca0dae559fb440d7c5a965540a4585c4439718d7897N

  • Size

    52KB

  • MD5

    b85891e6b05fe6af6667036954758680

  • SHA1

    5726be82e6d62f678d4ae0cf1b6a7248fbd324e3

  • SHA256

    1b182941b47e48e97d0e8ca0dae559fb440d7c5a965540a4585c4439718d7897

  • SHA512

    08b7e86ef497937e51519032cac30acada93c9f51de9f1066bf1ec18ac73aaae39703cea52540d443ad29cbfa05abad7abbbe13422326f89de70c26e6ce16677

  • SSDEEP

    768:7Y7UXzkfXJpiEmuzFF+Y1n7Pir4geee1q6/1H5F/srMABvKWe:7Y7C4fXTiEmuzF7ir7ne1ZOMAdKZ

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2