Extracted

• • Target

    cc78868efaa74dcd24057ababa23f119b5a97b58eba110ab99fb34753b674ef3

  • Size

    69KB

  • MD5

    5885b93b139487017096c43e9f7ee324

  • SHA1

    d88549e94230e50b00fc1ebe668e508f076fd7f0

  • SHA256

    cc78868efaa74dcd24057ababa23f119b5a97b58eba110ab99fb34753b674ef3

  • SHA512

    faca2987d27a07a124180ff628dcaac3e0ac888297aaeafc3952550da5de29b330c345c972fa235aa7627725c87e53adf3897f1fc88c0084d2fdbc017a6cd027

  • SSDEEP

    1536:eW0w2/x+aqvFEnova5zHBLXNein/GFZCeDAyY:eW05/kaIFEno8XNFn/GFZC1yY

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2