Extracted

• • Target

    741f27db8491f850de4ccb7f26500f8e1c7de989aab1b0171748f02018dde4f9

  • Size

    84KB

  • MD5

    6fcb6cf9ed6b81e4e628ed3d1283b431

  • SHA1

    bb07d0395c718c725cfbf9a9f929263ad0579d08

  • SHA256

    741f27db8491f850de4ccb7f26500f8e1c7de989aab1b0171748f02018dde4f9

  • SHA512

    774cb9ca7062266511dd7c2a0547f2197c52953b20c580fc158a72d090abb2d971bfb16060f26feb7dc42ce41f1b8812ddb004537ebe5b77832a56ee758a42a4

  • SSDEEP

    1536:CDTw92TuLVCT+720jZXSREXHfVPfMVwNKT1iqWUPGc4T7VLd:wwMyRyz0jZCREXdXNKT1ntPG9pB

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2