Extracted

• • Target

    ea094b525d17dded035f753cace84e7ae92663ea85585fcae04337fb1efc2126

  • Size

    163KB

  • MD5

    71950f6483995db0893b8b0ea51abbe3

  • SHA1

    86a7aec95fc9c818cf478802eeca31384da0962d

  • SHA256

    ea094b525d17dded035f753cace84e7ae92663ea85585fcae04337fb1efc2126

  • SHA512

    c68278ff7db00e4053455772572f490567069c367f5dc76c3a60cfbbd21a0163319253ceebef9f9baa00fbf45cd0f2798b1ae10c76116a4d3e9d2a7e1c2febc9

  • SSDEEP

    3072:1/bjcT8YSVugWBJ/86GZRYgnWAUjWDUIwLyc4F:B28DVoj8rqgnwyDUFd4F

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2