Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.e8927687c93b992b3145d45092529b80.exe

  • Size

    235KB

  • Sample

    231022-v3zqvscb25

  • MD5

    e8927687c93b992b3145d45092529b80

  • SHA1

    4833e5ed51c29e0c79e74f20c7df0727ab3a4d46

  • SHA256

    0796f54fb6d6bd09630c1915de6e263076112bf5ea8ea74ab6252cc237e1d9fa

  • SHA512

    a6bed1a5849511462f92dd25816731097adc7ec44e65c262af7d61024e5172ca986a0950190f85c7a546186ddc22617ef7b350c14fd7e5df695ae47493d6f1e0

  • SSDEEP

    6144:TKTQtOeDDMkhT3LulrtMsQB+vn87L5A5:TK8BDMkhTwRMsD/y1A5

Malware Config

Targets

    • Target

      NEAS.e8927687c93b992b3145d45092529b80.exe

    • Size

      235KB

    • MD5

      e8927687c93b992b3145d45092529b80

    • SHA1

      4833e5ed51c29e0c79e74f20c7df0727ab3a4d46

    • SHA256

      0796f54fb6d6bd09630c1915de6e263076112bf5ea8ea74ab6252cc237e1d9fa

    • SHA512

      a6bed1a5849511462f92dd25816731097adc7ec44e65c262af7d61024e5172ca986a0950190f85c7a546186ddc22617ef7b350c14fd7e5df695ae47493d6f1e0

    • SSDEEP

      6144:TKTQtOeDDMkhT3LulrtMsQB+vn87L5A5:TK8BDMkhTwRMsD/y1A5

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks