Extracted

• • Target

    6c67869428a9679acc7bbca687f709eb3bc8c600708c7981b3cbb3129d4d5b87

  • Size

    92KB

  • MD5

    9a09255e7dcd31e23e12f7cda9c0f394

  • SHA1

    b228e7a1e70095046ad7219ab3eabfc851d71cf4

  • SHA256

    6c67869428a9679acc7bbca687f709eb3bc8c600708c7981b3cbb3129d4d5b87

  • SHA512

    b9a40c0ffe16e5b019f3350ca221c387317bf8e3772769d445ba0da3cb7730585e78cf9ed47b712f10c85136886c7e39b178612abdbec6ef835d45c696cdff90

  • SSDEEP

    1536:uvaSkX03sb1Mq4CIssh2dG+eo1xC0GZFXUmSC2e3lO:KX3nq4CIbh24ho1mtye3lO

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2