Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

NEAS.ecc52...f0.exe

windows7-x64

10

NEAS.ecc52...f0.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.ecc5228aee5113cf7c908463e005abf0.exe

  • Size

    401KB

  • Sample

    231103-k2bmjahb82

  • MD5

    ecc5228aee5113cf7c908463e005abf0

  • SHA1

    00d5df510f1dd60ae2a5940d14ca6555f8c7de88

  • SHA256

    4e02ecad7cfc6abc9bbfe67ac614f7186329f44deaa27714a3e34ef90ee137c8

  • SHA512

    558d82b4bb0da7b449ecc0af4b63a1e4513017bffefc85ff68314405ced648549cbfa7f06f9576ec66d31c057288388f3cea20a93e9a5c323d772668ae487fe2

  • SSDEEP

    6144:HPfWH1gAbKfwM0l0Qndpui6yYPaIGckfru5xyDpui6yYPaIGckSU05836PGyA7:HPf+rMQndpV6yYP4rbpV6yYPg058KrY

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.ecc5228aee5113cf7c908463e005abf0.exe

    • Size

      401KB

    • MD5

      ecc5228aee5113cf7c908463e005abf0

    • SHA1

      00d5df510f1dd60ae2a5940d14ca6555f8c7de88

    • SHA256

      4e02ecad7cfc6abc9bbfe67ac614f7186329f44deaa27714a3e34ef90ee137c8

    • SHA512

      558d82b4bb0da7b449ecc0af4b63a1e4513017bffefc85ff68314405ced648549cbfa7f06f9576ec66d31c057288388f3cea20a93e9a5c323d772668ae487fe2

    • SSDEEP

      6144:HPfWH1gAbKfwM0l0Qndpui6yYPaIGckfru5xyDpui6yYPaIGckSU05836PGyA7:HPf+rMQndpV6yYP4rbpV6yYPg058KrY

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks