Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.d304371152208304b5f8c62302394970_JC.exe

  • Size

    459KB

  • Sample

    231105-eham8sae8s

  • MD5

    d304371152208304b5f8c62302394970

  • SHA1

    389c033b64045dfd4cff148918202692a1e09d92

  • SHA256

    13066f03a841ccbdcbbef1adac7bf1e0569b4eb059b229777fa78d67052f4916

  • SHA512

    adf3f9a401d0518fbf3a993ed28c3ad847563ed617fa4798ad655a3b25ab7e70bc756fc2f8ac23609545ae4209b310487e65f530f88764ebfba8fd85914ce5b1

  • SSDEEP

    12288:Hg5wIaJwIKfDy/phgeczlqczZd7LFB3oFHoGnFjVZnykJGvpHGdt:Hg5wLJwFfDy/phgeczlqczZd7LFB3oFl

Malware Config

Targets

    • Target

      NEAS.d304371152208304b5f8c62302394970_JC.exe

    • Size

      459KB

    • MD5

      d304371152208304b5f8c62302394970

    • SHA1

      389c033b64045dfd4cff148918202692a1e09d92

    • SHA256

      13066f03a841ccbdcbbef1adac7bf1e0569b4eb059b229777fa78d67052f4916

    • SHA512

      adf3f9a401d0518fbf3a993ed28c3ad847563ed617fa4798ad655a3b25ab7e70bc756fc2f8ac23609545ae4209b310487e65f530f88764ebfba8fd85914ce5b1

    • SSDEEP

      12288:Hg5wIaJwIKfDy/phgeczlqczZd7LFB3oFHoGnFjVZnykJGvpHGdt:Hg5wLJwFfDy/phgeczlqczZd7LFB3oFl

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.