Extracted

• • Target

    84ac9f1cc32c8138c8780103bb8249894250f2519c2d67c2b164e3aabd00f2c0

  • Size

    45KB

  • MD5

    6783ab0393b1c352dbf2871f398614dd

  • SHA1

    469d5f02f0730ae4614a4ee3439afb01e51c208b

  • SHA256

    84ac9f1cc32c8138c8780103bb8249894250f2519c2d67c2b164e3aabd00f2c0

  • SHA512

    5b5eb36159babf64f0d390deada7c293ff899b5f661f26eaf60652673d592df29641c7b1c44059b5fcd1665cd1757a0f4967517e7df822a0c875f1d1faa3611d

  • SSDEEP

    768:n0Jq1QBRCSD6RpwSJN93ROUyUaAglu/662Kb2QIbrFL60/3/1H5fE:OIQBIRpRJHwUDiluC62gU5rRE

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2