Extracted

• • Target

    ee1d9d4eee63aeb44464bfdd083a98795f2baea477526200885e19ab288204b6

  • Size

    42KB

  • MD5

    5f98af8335855b0313ac1fcc5e6d852f

  • SHA1

    0f5668311ca167dad5b141436dbf565c0a2b4a06

  • SHA256

    ee1d9d4eee63aeb44464bfdd083a98795f2baea477526200885e19ab288204b6

  • SHA512

    6f94351bf6a24d1e0b14cf82b1a76ef06ea8d31d2a5de3f4d20bb0ccf767e789806f396693a96e221de93d94ca17cdcfd24bf99d85dcfb82e0487bb6fe24c627

  • SSDEEP

    768:nUzJwrwC4y92GR1dzDKPdl+f8XGkuecHPfqwgM7E77/Fy/1H5+:JcCjlAdl+f8X0PCKw72

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2