Extracted

• • Target

    9ce30b5456ab7b9873e6e5a812b5a1ee3804cedc90e0e7971e07e7ca98daa87b

  • Size

    219KB

  • MD5

    056f0282f1e2534096bd7656ace14217

  • SHA1

    5c52e9bd2e3698f009843ab8a4f7e93b16961e18

  • SHA256

    9ce30b5456ab7b9873e6e5a812b5a1ee3804cedc90e0e7971e07e7ca98daa87b

  • SHA512

    5ff8cda3b22f9fb6ec9442fdb939b7c77216ae39771d3d385a178760823d1dd56c6de2c91a4502e08bc4b17529fbd5b14cf788911e6802ed1b10826eb7996cce

  • SSDEEP

    6144:ojYuMt4jSkc2zDOO0aDD4PCxdXXwSfYrwB:UceOOdDD4PCxdXXwSfYr

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2