Extracted

• • Target

    f9e147bfe75f72e611ec26cdf73f894e22207c780765d31d5d1117dc68ec09e8

  • Size

    91KB

  • MD5

    6f2371458cedea37bace1a54a3ac4815

  • SHA1

    172c375a56e0cdbddfa13bd9d605b18692faa053

  • SHA256

    f9e147bfe75f72e611ec26cdf73f894e22207c780765d31d5d1117dc68ec09e8

  • SHA512

    dec9db9657a4f625b98e2c7ab36c27e7876ac2f6ac67ea028f5ee2cdf21587092353ab949c677dad98e495cb52b1d1486c83b2aaa1b9f4013116096f3da24051

  • SSDEEP

    1536:+Uc8+Yu+y0ForiC3FSr7TiwkU6joqqIVLgO:w+yq6vFSr7TSUurUO

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2