Extracted

• • Target

    bddccbeca57a3cf20e72790cf639d83b4543d615443c818b248208f2549f1120

  • Size

    144KB

  • MD5

    ad55adfe5bc286810ab1f98b0499247c

  • SHA1

    426aef1856b470bd901686915983ac73e1b39670

  • SHA256

    bddccbeca57a3cf20e72790cf639d83b4543d615443c818b248208f2549f1120

  • SHA512

    3e86270f0f41a221a58bde7cf893e57e36d31c5ab02fdc384ef9cc2b4418375abeac638caff30a6d0fb2afe136ed380e552649901247635de13493506b2d38b0

  • SSDEEP

    3072:BvFIOzSs3FIS76MKjJCUjBaWgOgHq/Wp+YmKfxgQdxvq:d2QSCAVJCUjBaWgOUmKyIxi

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2