Extracted

• • Target

    b6fee806f85f61a8ae875c854f1f68b75234393fb0db197d58f46b4fbb819b2c

  • Size

    85KB

  • MD5

    6b0732638f6c82f6f3936b0ddb333a48

  • SHA1

    0723883dfb71e0fad6fb803dd4508bee6508b2f5

  • SHA256

    b6fee806f85f61a8ae875c854f1f68b75234393fb0db197d58f46b4fbb819b2c

  • SHA512

    a7f7d9c6572bae874bcf1cd50203424c01713d3e912a385d4ed4c111538cc598bc25fc53a51ea31ca0f229c42d92588edabeb9d05f3172a658c33de94d485b76

  • SSDEEP

    1536:K0d29jP1v4VTzRXlO7uXcNvvm5yw/Lb0OUrrQ35wNBh:K08v4RzRY7usluTXp6h

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2