Extracted

• • Target

    c46d667c4fbb892eb4a156ab4477475914096979f7dce0aaab0a42fc13b650ff

  • Size

    42KB

  • MD5

    a620712fd0a636db23bdb0376bbd7dc3

  • SHA1

    de9f2411362982c357e79292def5729f5c438e20

  • SHA256

    c46d667c4fbb892eb4a156ab4477475914096979f7dce0aaab0a42fc13b650ff

  • SHA512

    19bd71df23cf93f967e85efdc70ec0f6c0a572753afaef302c9ef8ea88844ce7f48625b67542402e0ff70410cdb753f682850b3211e99b577381073326956a3c

  • SSDEEP

    768:kTivUn/8mge6HCcS+fCmzFSKSR30UH6PhHIgM3loQK/1H5:GiwxgesVvEPH65HIgMoh

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2