Extracted

• • Target

    3f4c704a0859236767fd2ecad45d8181cb3513fe2db151dbcd23234d48ea28ac

  • Size

    96KB

  • MD5

    e086785b43239c271dfa9d3b4535af09

  • SHA1

    87498aa1a86629f3c978ac3b3c5351f66d9c3842

  • SHA256

    3f4c704a0859236767fd2ecad45d8181cb3513fe2db151dbcd23234d48ea28ac

  • SHA512

    eb393aeb18cbca9d9764df7734bb36b7d2a5317697e28941aed6715d2aca573beebd55a70ff53872bdd1de0be9e9281e00aeef4ffb0bafb37572438c1eb1db79

  • SSDEEP

    1536:ePAsj7qJNd2tWknsiqTQIspcQ0YZMXKRk9GaAjWbjtKBvU:ePh7tt+PTQIspJ4KRk0VwtCU

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2