Extracted

• • Target

    e3b1965e92ef9b33a888f0b7e4ed013ad26612b20147c9cb23e36a07e63a9988

  • Size

    67KB

  • MD5

    da2d0ba75fedffe6c45a6c682b7cb701

  • SHA1

    9a1c9538c2ed7aff3fb748eed52e676e764b3ce7

  • SHA256

    e3b1965e92ef9b33a888f0b7e4ed013ad26612b20147c9cb23e36a07e63a9988

  • SHA512

    4d79665701a02f84283ff764be079045f4b3e901a5599afbdd3354d8d71b72eb1f70efa5833ab46316214783761d2ad731cba7410486c3b4089e213c2a62fce9

  • SSDEEP

    768:00tfynIHC3gSWeRX0DUxXcBDhe+yd9BkPSdLeLxdX/1H5rzEVErME/feYvn1q/D2:00tf+6UGelli6k6ZAJsJifTduD4oTxw

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2