Extracted

• • Target

    207b0e27c8fd02347aece33685dbc95374247fe13779fa04e5c9d1a5bc6c0325

  • Size

    45KB

  • MD5

    997b8ed01433c930c9e5ce96653b8dd9

  • SHA1

    23e0dd786b1214bbcb9a3ce888bf45582d7bc2a5

  • SHA256

    207b0e27c8fd02347aece33685dbc95374247fe13779fa04e5c9d1a5bc6c0325

  • SHA512

    61f6041b8c96bb44dab4cd8582185a843e3eacd8587d59f6bf7c3774e4da4b5fa3d9c1f9b48d27769e8b70a0f9a21f130d5761532a9750c5a65f5a9aa7c8000e

  • SSDEEP

    768:v6kUVLOemQbv6BVPgg5hPYSbuSGrTyuqyXmu/1H5:SkUIemDv/3QqC

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2