Extracted

• • Target

    0d3f76e1e200cc1a1b6254a647472ae9f6da601d5248b3e8f80dbf1a28baf8aa

  • Size

    415KB

  • MD5

    8ddf7ad133d44979d64cb4fe1aa434b8

  • SHA1

    abe9c516ca9d86db632dd7ed2a477c2533d1de9b

  • SHA256

    0d3f76e1e200cc1a1b6254a647472ae9f6da601d5248b3e8f80dbf1a28baf8aa

  • SHA512

    e20d0cc23c650a25dc32c97a73cea8f6f5a5923b93d900ba2185d67433ff66c98e52fa2ea94a68915299ed1274111a46a39074f2f9021b7b231e854022696fa6

  • SSDEEP

    12288:MoWj7NtInBBBBBBBBBBBBBBBBBBBBBBBBB0kfBBBBBBBBBBBBBBBBBBBBBBBBBNz:Mklp

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2