Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.88198123827bb0fe6d15d461098e7dc0.exe

  • Size

    199KB

  • Sample

    231031-kvqg4sch5t

  • MD5

    88198123827bb0fe6d15d461098e7dc0

  • SHA1

    1a073b58b25164cff82d1263a2c3f01d2b8fa69c

  • SHA256

    9d3851185409de7b231d81a17737e699086faf13a155f8bbb735fdc0c246ddb8

  • SHA512

    a720245af1e2bb244ae8f9a02b39b616214055d66c9855df52399b2d2136311a4c9f19fe1e3a3ee397d0d1d51feef7cc4f11cc1bc13fc7a2d280afae62c6d8b0

  • SSDEEP

    6144:cAYuPd69kISZSCZj81+jq4peBK034YOmFz1h:zPdayZSCG1+jheBbOmFxh

Malware Config

Targets

    • Target

      NEAS.88198123827bb0fe6d15d461098e7dc0.exe

    • Size

      199KB

    • MD5

      88198123827bb0fe6d15d461098e7dc0

    • SHA1

      1a073b58b25164cff82d1263a2c3f01d2b8fa69c

    • SHA256

      9d3851185409de7b231d81a17737e699086faf13a155f8bbb735fdc0c246ddb8

    • SHA512

      a720245af1e2bb244ae8f9a02b39b616214055d66c9855df52399b2d2136311a4c9f19fe1e3a3ee397d0d1d51feef7cc4f11cc1bc13fc7a2d280afae62c6d8b0

    • SSDEEP

      6144:cAYuPd69kISZSCZj81+jq4peBK034YOmFz1h:zPdayZSCG1+jheBbOmFxh

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks