Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

NEAS.e1209...10.exe

windows7-x64

10

NEAS.e1209...10.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NEAS.e12094140614de36caaa75b5c2e05a10.exe

  • Size

    109KB

  • Sample

    231105-yjhvsabd4y

  • MD5

    e12094140614de36caaa75b5c2e05a10

  • SHA1

    afd2c88ea14df7f54ba3ff53bad3282cf567aa49

  • SHA256

    a9cc0eb5f4d23ae6362720f25c05206b2f68993906ece0b7f0eca674d681ece6

  • SHA512

    2fa630e1fc87b1f2b7ffb3b3994981abed4c4a344fcab566d01fc9bae15592ba63d3085e788edbe3047790c36ef288a01c595f6bf8bc2b4f7aaf5f3823395c6e

  • SSDEEP

    3072:vIYftecWY1WJ9oLCqwzBu1DjHLMVDqqkSpR:vIKxWPJ9owtu1DjrFqhz

Score
10/10
berbewdropperpersistencetrojan

Malware Config

Targets

    • Target

      NEAS.e12094140614de36caaa75b5c2e05a10.exe

    • Size

      109KB

    • MD5

      e12094140614de36caaa75b5c2e05a10

    • SHA1

      afd2c88ea14df7f54ba3ff53bad3282cf567aa49

    • SHA256

      a9cc0eb5f4d23ae6362720f25c05206b2f68993906ece0b7f0eca674d681ece6

    • SHA512

      2fa630e1fc87b1f2b7ffb3b3994981abed4c4a344fcab566d01fc9bae15592ba63d3085e788edbe3047790c36ef288a01c595f6bf8bc2b4f7aaf5f3823395c6e

    • SSDEEP

      3072:vIYftecWY1WJ9oLCqwzBu1DjHLMVDqqkSpR:vIKxWPJ9owtu1DjrFqhz

    Score
    10/10
    dropperpersistencetrojan

    • Adds autorun key to be loaded by Explorer.exe on startup

      persistence

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

      persistencedroppertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks