Extracted

• • Target

    4b7fc043e3e1e9e046430c5f7436ce54cadf39e4b3cca5d30f93a916e23c184a

  • Size

    77KB

  • MD5

    78f05a85e731c3bae20aaa2379f0e762

  • SHA1

    c3f72d99843a7a478cc2ca5d65187d2f0c1d7115

  • SHA256

    4b7fc043e3e1e9e046430c5f7436ce54cadf39e4b3cca5d30f93a916e23c184a

  • SHA512

    d0527e69a8a9f03e524f939ff4ad4193b32bdae445abde9c122765cce560a44957d6fbbfca86711b898675c0e8aabb1cc405ee1a30d4f6d8cbc836c843979d42

  • SSDEEP

    1536:WZ4HG3uURYMnCezR34GD47EtOVAR9baOIO617DWkZFfScD7SzCbHWrAWG:M4HG3l+YR3TD47EtOVATvIOuGkZFfFSQ

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2