Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

NEAS.751ba...00.exe

windows7-x64

10

NEAS.751ba...00.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.751bae2918f03fd339b20f472c717200.exe

  • Size

    77KB

  • Sample

    231104-rzrz3abe21

  • MD5

    751bae2918f03fd339b20f472c717200

  • SHA1

    3dc93d8c95f1823e73a8ea92042411f9b17c17cc

  • SHA256

    f24edcd1f27006c83252c086f34aec430b75026d9c13c1ea30b77e1b98a7a414

  • SHA512

    b7264c39f1f47f8aa2211cbd389537d459d9b5b2d60dccdbf02634ed10b1a77d1ed3607eeb8fdb8bc55f26918b2ca42cedc12f97d3554f1692354ecd24562727

  • SSDEEP

    1536:Z00nXHpT/0L4UW2g6xd8Yb2LtIxwfi+TjRC/D:OmXp7083fYZ4mwf1TjYD

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.751bae2918f03fd339b20f472c717200.exe

    • Size

      77KB

    • MD5

      751bae2918f03fd339b20f472c717200

    • SHA1

      3dc93d8c95f1823e73a8ea92042411f9b17c17cc

    • SHA256

      f24edcd1f27006c83252c086f34aec430b75026d9c13c1ea30b77e1b98a7a414

    • SHA512

      b7264c39f1f47f8aa2211cbd389537d459d9b5b2d60dccdbf02634ed10b1a77d1ed3607eeb8fdb8bc55f26918b2ca42cedc12f97d3554f1692354ecd24562727

    • SSDEEP

      1536:Z00nXHpT/0L4UW2g6xd8Yb2LtIxwfi+TjRC/D:OmXp7083fYZ4mwf1TjYD

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks