Extracted

• • Target

    90bfc3bf6cbc6e46ac75d21df7b0e3a54409a10be5b11fb78556a435276c6466N

  • Size

    72KB

  • MD5

    ca34d8c590b4f264a0fec9ddc0ed6520

  • SHA1

    e150d1bec479a9e8dcdc3f89dbcc1ae8b73a5275

  • SHA256

    90bfc3bf6cbc6e46ac75d21df7b0e3a54409a10be5b11fb78556a435276c6466

  • SHA512

    8a91c2bc7740b31bd4d8e154131c222a74a19fc5b3523b52d02b75d38e9c063e8e6a76f700cada6a75056e8316a6751b780ed287575217d212ca07489c68d698

  • SSDEEP

    1536:3mtmGipby0wc7k/RqvAZkY9dFPgUN3QivEtA:WtQc0IZZ9jPgU5QJA

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2