Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.f18359f29bb0f6dd7e6b79a381e916eb_JC.exe

  • Size

    256KB

  • Sample

    231102-wege2sdd3w

  • MD5

    f18359f29bb0f6dd7e6b79a381e916eb

  • SHA1

    453a6efcec1088bbe89a545bc9a5696f54c66dca

  • SHA256

    1065f821767fc92ae66c0aa99a10f3f1fb9b88dbc4e89b53464a134731fe986a

  • SHA512

    7728935b8c93e1eb3b9f0b11b209f3ca2e0d8664f126029faf39a09b48a5f658a3438878d886169cace103b2ae4138490654d8d159bd119f079d609dfe24ad9d

  • SSDEEP

    6144:+89W3+yRMcxaE4rQD85k/hQO+zrWnAdqjeOpKfduBU:+89W3+yOprQg5W/+zrWAI5KFuU

Malware Config

Targets

    • Target

      NEAS.f18359f29bb0f6dd7e6b79a381e916eb_JC.exe

    • Size

      256KB

    • MD5

      f18359f29bb0f6dd7e6b79a381e916eb

    • SHA1

      453a6efcec1088bbe89a545bc9a5696f54c66dca

    • SHA256

      1065f821767fc92ae66c0aa99a10f3f1fb9b88dbc4e89b53464a134731fe986a

    • SHA512

      7728935b8c93e1eb3b9f0b11b209f3ca2e0d8664f126029faf39a09b48a5f658a3438878d886169cace103b2ae4138490654d8d159bd119f079d609dfe24ad9d

    • SSDEEP

      6144:+89W3+yRMcxaE4rQD85k/hQO+zrWnAdqjeOpKfduBU:+89W3+yOprQg5W/+zrWAI5KFuU

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks