Extracted

• • Target

    e44f21b248ce3d8a2933200b39c152e5c21061912715fe6f17f84f81999117cc

  • Size

    52KB

  • MD5

    e001f833b4f7c07062b51c47d50ba808

  • SHA1

    530dcd2a260fbd68250d1beef2fafede26ac45a5

  • SHA256

    e44f21b248ce3d8a2933200b39c152e5c21061912715fe6f17f84f81999117cc

  • SHA512

    68461b46944a9d52a98e8bd91369e13027cc3d748c231e92e9d8d0ebe08caee3c6eae2cab00f2ba45c968225c3a563050b2f00697e3db35c16fed44546606a19

  • SSDEEP

    768:W4tYIuNcKYta8HprUHY/plhiiE0oZS0sTJ+bL5/1H5F/sMMABvKWe:W4tYIuNcxHpr6EplUz0oZFsYBMAdKZ

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2