Extracted

• • Target

    46e368c82770ea1c01d2a4817d264134f64d348dc777bbb33cb36f41208246f2

  • Size

    64KB

  • MD5

    aaa4f437c6368827a915650a2e9c7787

  • SHA1

    373d207859275b49733de9032b6ede0e7a41ebcf

  • SHA256

    46e368c82770ea1c01d2a4817d264134f64d348dc777bbb33cb36f41208246f2

  • SHA512

    b7dd5cbd8d373496fdac81d92bd0365876386becaf1a0e1fd8303917473571c3c36696f30ae248742aca7edf67df51f3f7512ae88cb8e6004d0433583f95404a

  • SSDEEP

    1536:ZiI+u7Gh4LHcG1jrfVwm7/PkpaSftWy2rPFW2iwTbW:ZiIk4L8GTwmIpawtXiFW2VTbW

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2