Extracted

• • Target

    d3ffbe511cdc7edaeca4dfc2af0855f7e4b0ff98fe29f9b21228424e3af66c78

  • Size

    92KB

  • MD5

    8eb9618b7564aff75c440af934665aa8

  • SHA1

    03589937d1761495581ba74c45d0d77120b83749

  • SHA256

    d3ffbe511cdc7edaeca4dfc2af0855f7e4b0ff98fe29f9b21228424e3af66c78

  • SHA512

    f0c40073f13fc6cfa2b65f52017965d9a83f9c1a83566b1b686e25e577d3b1a11241f043eaa3d5818a2c1755590b63a6e0375053e4a592c1f87460a470ef4345

  • SSDEEP

    1536:57vpeyn8cyzfjnm8tlO7uXcNvvm5yw/Lb0OUrrQ35wNBUyVVi:5rpR8Xjnmx7usluTXp6Ul

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2