Extracted

• • Target

    ca2d83bd945300dec4fcbfb822da0cdf046a6d8cece39258a60f461b127364d3

  • Size

    69KB

  • MD5

    5d6ef4cb14cbf1bed11c990222db50ec

  • SHA1

    03468a30e5d6647df550922d541ab9c252af7a48

  • SHA256

    ca2d83bd945300dec4fcbfb822da0cdf046a6d8cece39258a60f461b127364d3

  • SHA512

    8b3bbb33437fdd4eb9e00a8678940920f22bcf1fcc71ec16c2ac2cb4e632587251b27190f69305fab66f3665c83472ec24e7e9374ac720f0c2409e3ec16f01a9

  • SSDEEP

    1536:mgNAhnT0dq1rU0MF4YPCHrQJNO5PANein/GFZCeDAyY:mgNwt1A0DHrQJNO5YNFn/GFZC1yY

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2