Extracted

• • Target

    2d3ab66993bcbc9ab2efed0e9d21a1aafd1f1639bc9e807d4961bc5a9c5145a1

  • Size

    67KB

  • MD5

    58da2ac55f7ea83ebcf7f2c09a11c850

  • SHA1

    91fc38a81901153e6b4c6279c1c207bb57310ccf

  • SHA256

    2d3ab66993bcbc9ab2efed0e9d21a1aafd1f1639bc9e807d4961bc5a9c5145a1

  • SHA512

    57d38abdf9217adb3b5123afc2bda61da5ee15d4f32d638e2925f55e59967fb707e243ce15e872a3a1e79394a39dce744cb27476e1f04dd8de31feb60f43c2f2

  • SSDEEP

    1536:Ynjm/QJY1vXmu1IEruzGlHpsJifTduD4oTxw:Yj41+AIE6zSHpsJibdMTxw

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2