Extracted

• • Target

    58700987d7091451f447ac442232d04af9ede7028145a23f6a4a23c8d1d5edfb

  • Size

    64KB

  • MD5

    fc029da331c1a0b2856e8a360f6aa05c

  • SHA1

    3ffd93a7947015c7a67fdd44a69a5d371e1816a8

  • SHA256

    58700987d7091451f447ac442232d04af9ede7028145a23f6a4a23c8d1d5edfb

  • SHA512

    78238d995707beae052c0760b14dc9fdacc4b904d9ff8565fc789996ec6b973c6d60bce3cbc91b4156858839b100901d1b570ee3c66adff8e11cc73fbf866831

  • SSDEEP

    768:jRPOWRNo1555tbWqzHowO8MWtd3yejncEGcAd/1H5WjUZEgruCHPkJLzt1SZIk7J:lPzRNoZWqzxOS6cG4jUXruCHcpzt/Idn

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2