Extracted

• • Target

    7f7f54487ebf41ff74841b002915a4866fcba728e24d4523462f5de5016e52ac

  • Size

    64KB

  • MD5

    53db3a4589119246ccfd57fefb1c982b

  • SHA1

    73ff1247fe46f6415682fe1d978c5c2ba0bec4fd

  • SHA256

    7f7f54487ebf41ff74841b002915a4866fcba728e24d4523462f5de5016e52ac

  • SHA512

    b8aa3e6cc214b07c2a116dff7c7b42b68aead791fa58fcb49496755f6979bfc9792539176f978ef6fd7a6620edc8325ef73f6fafd058d9aadfd5f805a33bebef

  • SSDEEP

    1536:OkMClpRbh6NEWiL29D8NWygfrPFW2iwTbWv:Ok5l6EWiaWNX8FW2VTbWv

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2