Extracted

• • Target

    d522a80c1fb73c2def4af5d3bcbebed31c60693bebbb3c31178f7395b58f1e6f

  • Size

    90KB

  • MD5

    e908fc5a719582408b1c5b645c1ae253

  • SHA1

    026c759fb632b01d6e80b38cd76ea5c0277c39ed

  • SHA256

    d522a80c1fb73c2def4af5d3bcbebed31c60693bebbb3c31178f7395b58f1e6f

  • SHA512

    955be9d1bcf79d874646be4a4ccb615972ebf2ad1b17fceb19de0cc2d0302ac4b336dfe7cf8e701a93350e5d4661cacfb994adc485ad185ec9a935cb4241b36a

  • SSDEEP

    1536:Af/CocH2WsqAEElZolheR2wOQnFiI9yVnQQC4fl8k/7TZPd:Af/Co1p9XfnE83T498a7TZPd

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2