Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.99062482a05e2e270f4cd5cdc45315e0.exe

  • Size

    104KB

  • Sample

    231106-ckxvfafg2v

  • MD5

    99062482a05e2e270f4cd5cdc45315e0

  • SHA1

    229d59a82841c4eb993727829084c144dcb6f233

  • SHA256

    2e26b28ac50ca9fd80cc7f977016e0e5d3aa6341b7c83d96e07421c6100c4c18

  • SHA512

    d9733afced542d589bc0f56958f8d5004105703dfb69038dccd29aa22a797b950cb1470b1637210599401e5d20699bd05e1de0dd4208f7007ab3d2a56a2006e9

  • SSDEEP

    3072:Z+ibH1F3G34GGalOe5zx7cEGrhkngpDvchkqbAIQS:ZHFzGT5zx4brq2Ahn

Malware Config

Targets

    • Target

      NEAS.99062482a05e2e270f4cd5cdc45315e0.exe

    • Size

      104KB

    • MD5

      99062482a05e2e270f4cd5cdc45315e0

    • SHA1

      229d59a82841c4eb993727829084c144dcb6f233

    • SHA256

      2e26b28ac50ca9fd80cc7f977016e0e5d3aa6341b7c83d96e07421c6100c4c18

    • SHA512

      d9733afced542d589bc0f56958f8d5004105703dfb69038dccd29aa22a797b950cb1470b1637210599401e5d20699bd05e1de0dd4208f7007ab3d2a56a2006e9

    • SSDEEP

      3072:Z+ibH1F3G34GGalOe5zx7cEGrhkngpDvchkqbAIQS:ZHFzGT5zx4brq2Ahn

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Backdoor - Berbew

      Berbew is a malware infection classified as a 'backdoor' Trojan. This malicious program's primary function is to cause chain infections - it can download/install additional malware such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks