Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.c58c6b433692a6ce0ffe2dc2a2961610.exe

  • Size

    269KB

  • Sample

    231102-vbrwyaag6z

  • MD5

    c58c6b433692a6ce0ffe2dc2a2961610

  • SHA1

    6a28d255cc647039a409c9b78ede46da8e1fbcda

  • SHA256

    7c70ab6bf0015e221166e74ded4a8135ce839d2a309d7c3e30de7bbc758d75c1

  • SHA512

    b7794098dad22af35b98c1380cc146a72a8c14e42d83fa8ee55df7b97ceb90deef85c04d178ba6ae30fbf1664d04e1cee367be63ba77d1cada32220bdc0eac9d

  • SSDEEP

    6144:uj7C7HCiooDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55Kmj50GXoCcmASBTw2AX4:uj7+QChtMtkM71r1MSXqPix55KI5fX/Z

Malware Config

Targets

    • Target

      NEAS.c58c6b433692a6ce0ffe2dc2a2961610.exe

    • Size

      269KB

    • MD5

      c58c6b433692a6ce0ffe2dc2a2961610

    • SHA1

      6a28d255cc647039a409c9b78ede46da8e1fbcda

    • SHA256

      7c70ab6bf0015e221166e74ded4a8135ce839d2a309d7c3e30de7bbc758d75c1

    • SHA512

      b7794098dad22af35b98c1380cc146a72a8c14e42d83fa8ee55df7b97ceb90deef85c04d178ba6ae30fbf1664d04e1cee367be63ba77d1cada32220bdc0eac9d

    • SSDEEP

      6144:uj7C7HCiooDX4EYtCwGtMtkiXOoloMr1JeSldqP7+x55Kmj50GXoCcmASBTw2AX4:uj7+QChtMtkM71r1MSXqPix55KI5fX/Z

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks