Extracted

• • Target

    082e90ee20a5bde3b3925732b790f85aec1bd70a440ae7718772fbebd49ef478

  • Size

    67KB

  • MD5

    ba9b02faba79d151c5f2a02eb9d0607e

  • SHA1

    000094abe411acc35478a2ee3f241dada108ac48

  • SHA256

    082e90ee20a5bde3b3925732b790f85aec1bd70a440ae7718772fbebd49ef478

  • SHA512

    c4b250ccfbd9bde25ee88f3611c0e33566255df445398b6ab7a88c86dff52c14f0d6c34f4b406f69585f84afc68c2e84de1aa1723db33af5e5e2528f3c92eb24

  • SSDEEP

    1536:fxAXaA77w+jNJ6/YBNHsJifTduD4oTxwB:ZAqwkyGgBNHsJibdMTxwB

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2