Extracted

• • Target

    6b51a1dcf43a3df6ae30c2005e5551cc6787242e94ae0e463f4d0d1affb06f2c

  • Size

    52KB

  • MD5

    abea64f3cbecd756c31c8766d3a98895

  • SHA1

    4bc45bda1ab0d6d1255a4f0d508586e5a39b7882

  • SHA256

    6b51a1dcf43a3df6ae30c2005e5551cc6787242e94ae0e463f4d0d1affb06f2c

  • SHA512

    92c8518cf28a387e448475f76d9f584b32153239bc1cdbf0f1ffb7f50f837013b35f5f1bb84dbbec627317ee81fa553c07ebe3f767123fa0dcf27446ef1171b2

  • SSDEEP

    768:VpvfEPs3VbHxlnqsLbGJfQoxMumqH5upxwoLTvtLM1UJYrYkf63x/1H5F/sCMABK:Vp3EE3nbGJFl35uco/vNy47fMAdKZ

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2