Extracted

• • Target

    dc66c34f47367b7366b52f5171fb2c3819c7e69169db760921f8104a02f93233

  • Size

    64KB

  • MD5

    64f35ce0509a774c32ab6b72c80b5794

  • SHA1

    3031d71e5fb7ce44fae3e0cf6abab69e8906ca86

  • SHA256

    dc66c34f47367b7366b52f5171fb2c3819c7e69169db760921f8104a02f93233

  • SHA512

    e2d775c544bbd25288421f4a824a4bbfe23d58d1dda51742b21614afdacb87aea6c1bad7ce49e309432af8f8035b59f749a4408ee09d20fc19b168a58fefe6a4

  • SSDEEP

    1536:5Mql+V8e7sEnqg+2qqEnE07pvy7d4RxUXruCHcpzt/Idn:9YCesEqnE071CopFwn

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2