Extracted

• • Target

    de51985cc0b106e0c8968f29cf275c6e21ab005fef4b6433bdb4cd9d21cc0ab6

  • Size

    64KB

  • MD5

    61d6d2c74de69b098c02d4b5b923215c

  • SHA1

    6ae3f10cae549a52275af3c45017cecdea222c03

  • SHA256

    de51985cc0b106e0c8968f29cf275c6e21ab005fef4b6433bdb4cd9d21cc0ab6

  • SHA512

    fc54ab09c8148e0fa9590c883f00af5d1a6d41eaadcba8b8706702c232da986ec08d92289414a7172ff69cf18c58eb3f3185bc73fbe41d33472558514db1be3d

  • SSDEEP

    768:3C2vTElI8bQSsHr1WtCmlrwTezBUBP6WDI/AiiHH/1H5l6XJ1IwEGp9ThfzyYsHf:3Xv0sLwCuP9uAozeXUwXfzwf

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2