Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.dbb74979f98e7c3cfdfe81ac3004ed10_JC.exe

  • Size

    155KB

  • Sample

    231023-yaszdsfe26

  • MD5

    dbb74979f98e7c3cfdfe81ac3004ed10

  • SHA1

    a012785f173625a342047b739210822bcfb6727a

  • SHA256

    361f55e05591cc21ef48849ed17a26fcc2ca538e1ed6bc8d83e0f308f9629118

  • SHA512

    d8fcb6643fd505718ed23fa2202609317fb7cff08920b617ca33ce7cf866caabf99d9b85bca8120d3f767feadb50f1221a6bc489cd5315c5f5c5bb73485d2c3b

  • SSDEEP

    1536:Yj17PVrwIaGWC6CbNBtDq6d+rYEznYiGzBn2rq15bLSwiHr/O:Yjd595WCXNfq6ArYEznYfzB9BSwWO

Malware Config

Targets

    • Target

      NEAS.dbb74979f98e7c3cfdfe81ac3004ed10_JC.exe

    • Size

      155KB

    • MD5

      dbb74979f98e7c3cfdfe81ac3004ed10

    • SHA1

      a012785f173625a342047b739210822bcfb6727a

    • SHA256

      361f55e05591cc21ef48849ed17a26fcc2ca538e1ed6bc8d83e0f308f9629118

    • SHA512

      d8fcb6643fd505718ed23fa2202609317fb7cff08920b617ca33ce7cf866caabf99d9b85bca8120d3f767feadb50f1221a6bc489cd5315c5f5c5bb73485d2c3b

    • SSDEEP

      1536:Yj17PVrwIaGWC6CbNBtDq6d+rYEznYiGzBn2rq15bLSwiHr/O:Yjd595WCXNfq6ArYEznYfzB9BSwWO

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks