Extracted

• • Target

    122324137a2f8d9470008844e95cd96ed4000eff609e9a14955a49dcdc713ca7

  • Size

    194KB

  • MD5

    489adfa2443b12d5231da3e3df6fbc10

  • SHA1

    f4ce8ec8896657c77dd0d7ac5355e7445669c776

  • SHA256

    122324137a2f8d9470008844e95cd96ed4000eff609e9a14955a49dcdc713ca7

  • SHA512

    f6f0e39ce3d5641b9c77648f17feabbbdf4fb08771d1cd7e550dfe3424c5f72d9e94f367176bfcf6a8180c057332678ef535565249e85048333e5af44728e9d0

  • SSDEEP

    3072:wuR62+xdXQTJs8mmMIM/kEmMIGumMIc/1GV:wj2rm5/pbuh/UV

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2