Extracted

• • Target

    43620405c2e8490de898866f1cf1ce4d354a6505900b3f936df79dcee0182e9a

  • Size

    91KB

  • MD5

    f9b6ca72d4399a0979e96a9c510baf77

  • SHA1

    5f580070d84d13fd7b8615335156766498121310

  • SHA256

    43620405c2e8490de898866f1cf1ce4d354a6505900b3f936df79dcee0182e9a

  • SHA512

    fa8a93739373920bbb66109c9e6f9597f4bc20c24570c9babb176f63c420949f88ed5311694f2820f23ba99bfff8c0fd296104011b0fb588953e9e0859e14e22

  • SSDEEP

    1536:uK8S+k2Xo/UmHc1+vQxMtkL1riC3FSr7TiwkU6joqqIVLgq:uK8jkTsm8cQStkLpvFSr7TSUurUq

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2