Extracted

• • Target

    12b3fdecb12c41f85bee0692fab23d26ebb574062a93c3dd7c9ab6b822b7edcf

  • Size

    67KB

  • MD5

    546cd2f00433c50e625fe22aa5d4ceaf

  • SHA1

    32f26d0d233372aa8a632ef739c03315f73c0721

  • SHA256

    12b3fdecb12c41f85bee0692fab23d26ebb574062a93c3dd7c9ab6b822b7edcf

  • SHA512

    1790c6a008d1377ae3db66bfa1cd306e1b3dec5bb2854c681871cb4bdc7422a1327cf4aa143a29ef167229d0b6de8fb25b1562fa10d993f5e75fef79931dd18c

  • SSDEEP

    1536:fmoiWIKHgdLjbEK2uKObGdlvNSsJifTduD4oTxw:uoifKHgdLjZ1KObMvUsJibdMTxw

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2