Extracted

• • Target

    7736302d95beda824038393907d85a25700bfbec3077afbd2c2866231f364ba2

  • Size

    52KB

  • MD5

    dc05214922e1981f8cfa879b90b79237

  • SHA1

    76f6a3f4b29051ab1b44b2267394ff49e41d1158

  • SHA256

    7736302d95beda824038393907d85a25700bfbec3077afbd2c2866231f364ba2

  • SHA512

    09474258f4de9b299a88b6f958e1d482b599bc2609337794885d2a30283447f3ab40f6cb80a8206450a2ed24fa4ab3a87b5267104dfb7ee5591b5cf4b72c6bce

  • SSDEEP

    768:YW10ARKdLkWVQJVQn08dO7zJkLa3RCbOr8rhNFNpG1LPr/1H5F/swwMABvKW+:N1XKd1VH0pvJkLJFtpGBd7wMAdKJ

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2