Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.dc54213f8fd5b4cf05645971f98f9a50_JC.exe

  • Size

    138KB

  • Sample

    231101-1zdl4sfd67

  • MD5

    dc54213f8fd5b4cf05645971f98f9a50

  • SHA1

    921b542e1d80030335081f9adf21d35497d346d0

  • SHA256

    5a9e92fdabd07dc1cc1b39b23bf28d45a5e320af22623e76d56d6ebba1d8b5fc

  • SHA512

    8813f860b339a29532c008de7edf453377c14a7f4aae8930fbb1f660fb8b0ec287956200cd80caf65aef4f64006748844dce4205312fc23650fd7b60dbc41307

  • SSDEEP

    3072:C/sOw9UPFM3n88b5arISXA8mW2wS7IrHrY8pjq6:QsSGroV5mHwMOH/Vz

Malware Config

Targets

    • Target

      NEAS.dc54213f8fd5b4cf05645971f98f9a50_JC.exe

    • Size

      138KB

    • MD5

      dc54213f8fd5b4cf05645971f98f9a50

    • SHA1

      921b542e1d80030335081f9adf21d35497d346d0

    • SHA256

      5a9e92fdabd07dc1cc1b39b23bf28d45a5e320af22623e76d56d6ebba1d8b5fc

    • SHA512

      8813f860b339a29532c008de7edf453377c14a7f4aae8930fbb1f660fb8b0ec287956200cd80caf65aef4f64006748844dce4205312fc23650fd7b60dbc41307

    • SSDEEP

      3072:C/sOw9UPFM3n88b5arISXA8mW2wS7IrHrY8pjq6:QsSGroV5mHwMOH/Vz

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks