Extracted

• • Target

    5e7b394fd11412060396cab7441041c1206f55b1b10584c61aa3d7bd4079f9f7

  • Size

    67KB

  • MD5

    6dce6be5603d991a638053cfa3581d47

  • SHA1

    6bccf315810b37a598f62f12318dbf52a5f73b4b

  • SHA256

    5e7b394fd11412060396cab7441041c1206f55b1b10584c61aa3d7bd4079f9f7

  • SHA512

    3652476cf1577286b8d542a3d5527786df52abea80255204e66525796e8774c373284203f6bab087e623baac6089dc797eff47312fa354c5926cd0ea583841cd

  • SSDEEP

    1536:hLbm2cRP4OWg7/Tq2f1ZqFsSn+p77tsJifTduD4oTxw:Ij94J2/Bjp7hsJibdMTxw

  Score

  10^/10

  berbewbackdoordiscoverypersistence

  • Adds autorun key to be loaded by Explorer.exe on startup

    persistence

  • Berbew

    Berbew is a backdoor written in C++.

    backdoorberbew

  • Berbew family

    berbew

  • Executes dropped EXE

  • Loads dropped DLL

  • Drops file in System32 directory

  behavioral1behavioral2